摘要
将自认证公钥的概念和组合公钥的思想相结合,为ad hoc网络提出了一种新的门限密钥分发方案,在此基础上,和"簇"的组网方式结合,提出一种完整的密钥管理方案。该方案公钥自身具有认证功能,不需要证书管理,密钥分发过程简单,消除了IBE(identity-based encryption)方案中存在的密钥托管问题。方案能够灵活地适应ad hoc网络动态拓扑性,适用于各种规模的网络。理论和仿真分析表明,该方案计算量和通信量都比较小,与PKI、IBE方案相比,具有更高的安全性和实用性。
A new threshold key distribution scheme basing on self-certified public key and CPK (composite public key) technology was presented for ad hoc networks. Basing on the key distribution scheme and cluster networks structure, an integrated key management scheme was presented. The public key can be certified itself and so the certificate is not need in the scheme. The process of key distribution is simple and the key escrow problem existing in IBE (identity-based en- cryption) scheme is solved. The scheme can be used in different scale networks and can meet the dynamic topology of the ad hoc networks. The experimental results and theoretical analysis show that the overhead of computation and communication is lower. Comparing with PKI and IBE scheme the scheme is more secure and practical.
出处
《通信学报》
EI
CSCD
北大核心
2008年第10期223-228,共6页
Journal on Communications
基金
国家自然科学基金资助项目(60672102)
北京电子科技学院重点实验室基金项目(YZDJ0710)~~