东北大学学报(自然科学版) ›› 2012, Vol. 33 ›› Issue (10): 1407-1410+1423.DOI: -

• 论著 • 上一篇    下一篇

Ad Hoc中基于双线性对和证书的组密钥管理协议

林慕清;徐剑;刘泽超;周福才;   

  1. 东北大学信息科学与工程学院;东北大学软件学院;
  • 收稿日期:2013-06-19 修回日期:2013-06-19 出版日期:2012-10-15 发布日期:2013-04-04
  • 通讯作者: -
  • 作者简介:-
  • 基金资助:
    国家高技术研究发展计划项目(2009AA01Z122);;

Group key management protocol based on bilinear pairing and certificate in ad hoc network

Lin, Mu-Qing (1); Xu, Jian (1); Liu, Ze-Chao (1); Zhou, Fu-Cai (2)   

  1. (1) School of Information Science and Engineering, Northeastern University, Shenyang 110819, China; (2) School of Software, Northeastern University, Shenyang 110819, China
  • Received:2013-06-19 Revised:2013-06-19 Online:2012-10-15 Published:2013-04-04
  • Contact: Zhou, F.-C.
  • About author:-
  • Supported by:
    -

摘要: 针对当前多数分布式组密钥管理协议不能提供密钥认证及不能抵御主动攻击的安全问题,设计了满足认证性的CBPSTR(certificate- owned and bilinear pairing- based STR)协议.该协议采用特殊的三叉密钥树结构,结合STR和TGDH协议并引入证书和双线性对密码体制.CBPSTR协议包括6个子协议:建立多播组、成员加入、成员离开、合并多播组、拆分多播组和更新组密钥.安全性分析表明CBPSTR协议在计算上是安全的.与STR协议进行比较,CBPSTR协议具有较低计算和通信代价.由于具有成员间的认证性,CBPSTR能抵抗中间人攻击、密钥泄漏假冒攻击和未知密钥共享攻...

关键词: 多播密钥管理, 双线性对, 证书, CBPSTR, Ad Hoc

Abstract: Most of the distributed group key management protocols are not secure against the active attacks without key authentication, so a CBPSTR (certificate-owned and bilinear pairing-based STR) protocol was designed to meet the requirement. Based on the STR and TGDH, the certificate mechanism and bilinear pairing function in elliptic curve with the ternary tree were introduced to propose a novel multicast key management scheme CBPSTR. The CBPSTR protocol included 6 sub protocols (setup protocol, join protocol, leave protocol, merge protocol, partition protocol and refresh protocol). Security analysis showed that the CBPSTR protocol was secure for calculation. Compared with STR, the CBPSTR possessed lower communication and computation cost. Moreover, the CBPSTR could effectively resist man-in-the-middle attack, key-compromise impersonation resilience and unknown key-share resilience. It could be concluded that the CBPSTR protocol was a novel, authentication and efficient distributed key management protocol.

中图分类号: