基于区块链的工业互联网动态密钥管理  被引量：3

作　　者：张泽林 王化群 Zhang Zelin;Wang Huaqun(School of Computer Science,Nanjing University of Posts and Telecommunications,Nanjing 210023)

机构地区：[1]南京邮电大学计算机学院,南京210023

出　　处：《计算机研究与发展》2023年第2期386-397,共12页Journal of Computer Research and Development

基　　金：国家自然科学基金项目(61872192);江苏省高等学校自然科学研究项目(19KJA310010)。

摘　　要：目前,工业互联网数据面临的安全威胁日益严重,有效的网络传输对工业互联网的数据安全起到关键的作用.为了能有效适应工业互联网的结构,实现安全可靠的通信,提出一种基于区块链的动态节点的密钥管理方案.工业通信中,不信任的节点之间需要建立有效的会话密钥,并且传统的借助一个中心节点采用中间人方式实现密钥协商,但是一旦中心节点失效,则会导致整个通信系统的通信失败.而当节点数n较少时,通常采用中心节点预先设置密钥的方式,每个节点均需存储(n-1)个密钥,那么整个系统需要存储n(n-1)个密钥,一旦节点需要增加,则整个系统存储的密钥就会呈指数级增长.因此,基于区块链,利用多项式来构建通信密钥,去中心化生成共享密钥,并有效抵御节点出入对系统的威胁,保证有效的组密钥协商,比传统的PKI具有更快的处理速度,且任何节点丢失密钥,可以借助其他节点信息有效地恢复原有密钥.At present, the security threat of industrial Internet data is becoming more and more serious. Effective network transmission plays a key role in the data security of industrial Internet. In order to effectively adapt to the structure of the industrial Internet and achieve safe and reliable communication, a key management scheme based on blockchain dynamic nodes is proposed. In industrial communication, an effective session key needs to be established between untrusted nodes, and the traditional key agreement is realized by using a central node in the way of middleman. However, Once the central node fails, the communication of the whole communication system will fail.When the number of nodes n is small, the central node is usually used to set the key in advance. Each node needs to(n-1)stored in the whole system will increase exponentially. Therefore, based on the blockchain, we use polynomials to construct communication keys, decentralize to generate shared keys, effectively resist the threat of node access to the system, and ensure effective group key negotiation. The propsosed scheme has faster processing speed than that of traditional PKI. If any node loses its key, it can effectively recover the original key with the help of other node information.

关 键 词：区块链 工业互联网 密钥管理 秘密共享 Kate承诺 

分 类 号：TP309[自动化与计算机技术—计算机系统结构]