摘要
利用动态累加器的证人能够证明特定累加项是否参与累加的特性,实现了组成员身份认证,提出了一种新的支持节点动态增加和撤销的组密钥管理方案DAAG。在需要建立组密钥时,所有成员节点提供自己持有的累加项,参与累加计算。DAAG方案在保证成员节点证人机密性的基础上,通过绑定证人与组密钥更新计算,限制了非成员节点对新密钥的计算能力。安全性和性能分析表明,DAAG方案虽比FM方案消耗更多的通信代价,但能够抵抗伪造、重放和共谋等恶意攻击,提供前后向安全性。
Witnesses of a dynamic accumulator (DA) can ensure whether an object has been accumulated. On the basis of this, node membership in a cluster was verified and a novel authenticated group key management protocol was proposed, which supports node revocation and addition. In order to establish a group key for a cluster, each member provides their assigned number to join accumulation. DAAG can not only guarantee the confidentiality of witnesses, but also keep non-members from calculating novel group keys by binding witness with group key update. The security and perfor-mance analyses show that DAAG is resistant against replay attack, forgery attack and collusion attack, and can provide forward security and backward security.
出处
《通信学报》
EI
CSCD
北大核心
2014年第3期124-134,共11页
Journal on Communications
基金
国家自然科学基金资助项目(61170241)
黑龙江省自然科学基金资助项目(F201229)~~
关键词
无线传感器网络
密钥管理
组密钥
动态累加器
认证
wireless sensor network
key management
group key
dynamic accumulators
authentication