计算机工程与应用 ›› 2010, Vol. 46 ›› Issue (10): 88-90.DOI: 10.3778/j.issn.1002-8331.2010.10.029

• 网络、通信、安全 • 上一篇    下一篇

移动Ad Hoc网络分布式CA有效性研究

王衡军1,王亚弟1,袁 方2   

  1. 1.信息工程大学 电子技术学院,郑州 450004
    2.总后后勤科学研究所,北京 100071
  • 收稿日期:2008-10-08 修回日期:2008-12-17 出版日期:2010-04-01 发布日期:2010-04-01
  • 通讯作者: 王衡军

Availability research of distributed CA in mobile Ad Hoc networks

WANG Heng-jun1,WANG Ya-di1,YUAN Fang2   

  1. 1.Institute of Electronic Technology,Information Engineering University,Zhengzhou 450004,China
    2.Institute of Logistics Sciences of the PLA General Logistics Department,Beijing 100071,China
  • Received:2008-10-08 Revised:2008-12-17 Online:2010-04-01 Published:2010-04-01
  • Contact: WANG Heng-jun

摘要: 由于自组织、动态拓扑等特点,移动Ad Hoc网络通常由分布式CA认证模型实现网络中节点之间的认证。由于认证在安全服务中的基础地位,有效的分布式CA模型对网络有效运行的意义重大。首先分析了分布式CA的组成结构与分布式CA证书管理与私钥元管理的有效性之间的关系。然后在NS仿真平台上模拟了分布式CA证书管理的过程,实验统计结果与理论分析结论基本一致。为达到移动Ad Hoc网络中分布式CA较高的有效性,该结论有助于移动Ad Hoc网络在初始化时确定和运行过程中动态调整分布式CA的结构。

关键词: Ad Hoc网络, 信任, 门限方案, 分布式CA, 有效性

Abstract: Ad Hoc network often realizes authentication between nodes by distributed Certificate Authority(CA) due to the self-organize,dynamic topology and other characteristics.The availability of distributed CA is significant for the reason that authentication is the basis of all secure services.The relation among server number,threshold and the availability in the management of certificate and secret key shares is analyzed firstly.And then an experiment,which simulates the process of the managing of certificates,is done.The experiment data are close to those computed.The conclusion is helpful to decide and adjust the structure of the distributed CA in the initializing and running state in order to achieve high availability of distributed CA service.

Key words: Ad Hoc network, trust, threshold scheme, distributed Certificate Authority(CA), availability

中图分类号: