摘要
为了提高Ad Hoc网络中基于身份密码体制的安全性,提出了自适应的分布式PKG机制。该机制中充当分布式PKG的服务者节点不是固定不变的,而是随着网络运行自适应地动态确定。为Ad Hoc网络节点赋予信用值,该值随着网络中有效的指控消息而发生改变,网络自动选择信用值排序靠前的节点充当服务者节点。该机制避免了传统分布式PKG机制中服务者节点固定不变带来的安全隐患,能够极大地降低PKG私钥泄露的概率,有效提升Ad Hoc网络的抗攻击能力。
In order to improve the security of identity based cryptography in Ad Hoc networks, we propose an adaptive distributed private key generator (DPKG) scheme, in which the server nodes that provide DPKG service are not fixed but are dynamically chosen by all the nodes during the operation of the network. Each node in the Ad Hoc network is assigned with a credit value which changes with the valid accusations messages sent by the nodes in the network, and the n nodes with the highest credit val- ues automatically become servers. The security risks caused by the static server nodes in the traditional DPKG are avoided in the scheme and the leakage probability of the PKG's secret key is greatly decreased, so the ability of resisting attackers outside of the Ad Hoc networks is improved effectively.
出处
《计算机工程与科学》
CSCD
北大核心
2015年第7期1272-1279,共8页
Computer Engineering & Science
基金
国家自然科学基金资助项目(61272037
61472472)
工信部科技重大专项资助项目(2013ZX03002004)
陕西省青年科技新星计划资助项目(2014KJXX-73)
西安邮电大学青年教师科研基金资助项目(ZL2013-06)
关键词
基于身份密码
网络安全
分布式
私钥生成中心
密钥管理
信用值
identity based cryptography
network security
distributed
private key generator
keymanagement
credit value
