计算机工程与应用 ›› 2007, Vol. 43 ›› Issue (30): 116-119.

• 网络、通信与安全 • 上一篇    下一篇

基于秘密分享的安全组通信协议设计与实现

朱培栋,姚 谛,赵建强,刘功杰   

  1. 国防科学技术大学 计算机学院,长沙 410073
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2007-10-21 发布日期:2007-10-21
  • 通讯作者: 朱培栋

Design and implementation of secure group communication protocol based on secret sharing

ZHU Pei-dong,YAO Di,ZHAO Jian-qiang,LIU Gong-jie   

  1. School of Computer,National University of Defense Technology,Changsha 410073,China
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-10-21 Published:2007-10-21
  • Contact: ZHU Pei-dong

摘要: 在深入分析MANET组通信安全需求和已有工作的基础上,基于门限秘密分享机制和门限RSA方案,提出了分布式安全组通信协议DSGCP(Distributed Secure Group Communication Protocol)。该协议避免了组密钥管理的单点失效问题,降低了节点移动性和链路可靠性对于组密钥管理的影响,适应网络拓扑变化的特点,抗毁性强。描述了协议的组通信密钥更新算法、组控制密钥更新算法和合作解密算法,刻画了协议报文格式和主要协议过程,并基于实际Ad-hoc网络进行了协议实现和协议性能测试。

Abstract: Based on an in-depth analysis of the security requirements of MANET and limitation of existing works,a protocol named Distributed Secure Group Communication Protocol(DSGCP) is proposed.The protocol avoids single-point-of-failure problem,reduces the influence on the group key generation by mobility of nodes and error prone wireless channels,and is fairly robust.Three important algorithms,i.e.,group session key renewal algorithm,group control key renewal algorithm and group communication co-decryption algorithm,are described,and the protocol packet formats and main procedures are presented. Implements the protocol in actual Ad hoc network,and conduct a series of experiments to test its performance in various aspects.