摘要
由于P2P网络中的节点具有高度的自治性和随意性,使得P2P网络的内部安全隐患突出,如何区分恶意节点,为良节点提供更好的服务成为研究的重点。文章提出一种基于椭圆曲线数字签名和门限密钥分享的分布式认证服务模型,可以在一定程度上区分出潜在的恶意节点,此外,利用证书更新和证书撤销策略能够更进一步地孤立恶意节点,把恶意节点的危害降低到最小。最后文章通过实验验证了该模型的有效性。
In the P2P network,a node can join in or leave freely,and they are highly Autonomic,so the dangerous from the network inside should be noticed.How to differentiate the malicious nodes and provide better service for good nodes is the research goal.The article proposes a decentralized authtication model which is based on ECDSA(ellipse curve cryptosystem) and threshold secret sharing scheme,at some extent,it can differentiate the potential malicious nodes.Besides,we can utilize the certification renewal and revocation service to isolate the malicious nodes from the network further,and mininum their danger.At last,the experiments prove that the model can provide stronger security for the P2P system.
出处
《计算机工程与应用》
CSCD
北大核心
2005年第17期149-152,189,共5页
Computer Engineering and Applications
基金
国家"十五"
"211工程"重点学科建设项目"信息安全保密技术与相关数学理论研究"(编号:181070H901)
信息产业部项目"安全网管技术"(编号:211070B414)
