摘要
针对现有机载自组织网络密钥管理存在的预分配密钥更新困难、公钥证书传递开销大、分布式身份密钥传递需要安全信道的问题,该文提出一种无需安全信道的基于身份密码体制的动态密钥管理方案。该方案包括系统密钥自组织生成和用户私钥分布式管理两个算法;采取遮蔽密钥的办法,确保私钥在公共信道中全程安全传递,使得密钥管理易于部署、方便扩展;最后分析了方案的正确性与安全性。结果证明方案理论正确,能够抵抗假冒、重放、中间人攻击。
Because of nowadays airborne network's updating difficulty of pre-allocated symmetrical key, high communication cost of public key certificate and the requirement of security channel for distributed identitybased key management, identity-based dynamic key management of airborne network is proposed. It is composed of two algorithms: self-organized generation of master key without the trusted third party and distributed management of user's private key. Moreover, the master key share and user private partition can be delivered without the pre-established security channel by blinding them so that the scheme is easy to develop and flexible to extend. Finally, the correctness and security of the proposed scheme are proved, it is shown that it can provide the ability to resist the impersonation attack, replay attack and man-in-the-middle attack.
作者
王宏
李建华
赖成喆
WANG Hong;LI Jianhua;LAI Chengzhe(Information and Navigation College,Air Force Engineering University,Xi'an 710077,China;Information and Communication College,National University of Defense Technology,Xi'an 710106,China;Xi' an University of Posts & Telecommunications,Xi' an 710121,China)
出处
《电子与信息学报》
EI
CSCD
北大核心
2018年第8期1985-1991,共7页
Journal of Electronics & Information Technology
基金
国家自然科学基金(61401499
61502386)~~
关键词
机载网络
身份密码体制
密钥管理
自组织
分布式
Airborne network
Identity-based cryptography
Key management
Self-organized
Distributed
