摘要
为了满足P2P网络中节点安全认证的需求,确保消息路由的可靠性,提出一种"身份认证码统一发放、分布式认证"(CIADA)的节点安全认证方案.该方案改进了"可信第三方"(TTP)信任模型,利用安全动态累积函数有效地实现了节点间的交互认证、节点的动态加入与删除,并且支持域间认证以及域的合并.CIADA认证方案充分考虑了P2P网络的自组织性、动态性及可扩展性,其与PKI技术具有相同的安全强度,并且克服了现有分布式认证方案中证书获取、证书撤销、跨域认证等困难,因此更适用于P2P网络的节点安全认证.
A novel authentication framework, which is named central identity-code assignment and distributed authentication(CIADA), is proposed in order to meet the demands of the secure authentication for nodes in the peer-to-peer (P2P) network. The "trusted third party" (TTP) trust model is improved, and the secure dynamic accumulator is utilized to carry out the authentication protocol. The authentication among nodes is implemented efficiently. The dynamic entering or leaving of nodes is supported, and the authentication among domains and the combination of domains are allowed. CIADA takes full account of the characters of P2P network such as self-organization, dynamic and scalability. It is in the same secure intension as public key infrastructure (PKI) but without the defects in keys' issue and revoking and the authentication among domains of other existed distributed authentication protocols. So CIADA is more suitable for the secure authentication of nodes in the P2P network.
出处
《东南大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2007年第A01期100-104,共5页
Journal of Southeast University:Natural Science Edition
基金
国家高技术研究发展计划(863计划)资助项目(2006AA01Z444)
关键词
P2P
节点认证
安全动态累积函数
peer-to-peer (P2P)
authentication of nodes
secure dynamic accumulator