摘要
现有的Ad Hoc网络完整性认证存在固有的缺陷,且用于传统固定网络的安全认证策略不能适用于Ad Hoc网络完整性认证。因此,文中在研究Ad Hoc网络特点的基础上,将可信计算和直接匿名证明理论引入Ad Hoc网络认证环节中。Ad Hoc网络安全认证的关键在于对其中各个节点的安全认证,文中在对各个节点认证之前先进行优化。首先在应用硬件层面上建立可信计算平台模块,其次在软件层面上建立直接匿名证明模块,从而实现Ad Hoc网络节点认证环节的优化。实际应用表明,文中提出的方案有效解决了Ad Hoc节点的安全性问题,降低了Ad Hoc网络受攻击的可能性。
The integrity authentication of the existing Ad Hoc networks has inherent defects, and the traditional fixed network security strategy is not appropriate for the integrity authentication of Ad Hoc networks. Therefore, based on the study about the features of Ad Hoc networks,introduce trusted computing and direct anonymous attestation theory into authentication of Ad Hoe networks. The crux of the security authentication for Ad Hoc networks is the security authentication for every node. Optimize the nodes before the authentication. Firstly, constitute trusted computing module on hardware level, and direct anonymous attestation module on software level. The application shows that this scheme can effectively solve security issues of the Ad Hoc nodes,thus declining the attacked possibility of the Ad Hoc net- works.
出处
《计算机技术与发展》
2014年第4期147-150,共4页
Computer Technology and Development
基金
中央高校基础研究项目(2013G1240118)
国家"863"高技术发展计划项目(2012AA112312)
交通运输部项目(2012-364-208-600
2012-364-208-200
201231849A70)
吉林省外国专家局项目(2012-7-102-2)
关键词
可信计算
Ad
Hoc网络
直接匿名证明
零知识证明
trusted computing
Ad Hoc networks
direct anonymous attestation
zero-knowledge proof