摘要
MANET的发展已有很多年,很多相关技术都已非常成熟,但MANET中的安全问题一直都是阻碍其大规模普及应用的一个瓶颈。本文中我们将MANET网络进行分域,各个安全域相对独立进行安全认证和通信加密。引入可验证密钥共享协议(VSS)进行局部域内的密钥共享,并在安全域内进行周期的密钥更新,有效防止移动敌手攻击。在节点通信安全方面应用基于域内终端领导者(EL)的验证方案,有效防止伪终端欺骗,本文的创新点就是将密钥共享、身份认证以及通信安全综合进一个解决方案,有效利用了MANET中有限的网络资源。
MANET has developed for many years, and many of its related technologies have been very mature.But the security problem of the MANET has been a bottle-neck hindering its large-scale application and popularization.This thesis has divided the MANET network into several domains, with each security domain conducting its own relatively independent security authentication and communication encryption.The secrete sharing in the partial domain through introducing Verifiable Secret Sharing(VSS) Protocol and the periodic secrete sharing renewal in the security domain can prevent mobile adversary attacks effectively.As for the node communications security aspect, the verification program based on the end leader(EL) in the domain is applied to effectively prevent the false node deceit.Innovation of this paper lies in the integration of secret sharing(VSS) 、the identity authentication as well as the communication security into one solution so as to make full use of limited network resources in MANET.
出处
《微计算机信息》
2010年第9期60-62,共3页
Control & Automation
基金
基金申请人:施荣华
项目名称:移动自组网中移动敌手及欺骗问题的研究
基金颁发部门:国家自然科学基金委(60773013)
关键词
移动自组网
可验证密钥共享
周期更新
安全域
身份认证
manet
verifiable secret sharing
periodic secret renew
security domain
identity authenticatio
