作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2006, Vol. 32 ›› Issue (18): 12-13,2. doi: 10.3969/j.issn.1000-3428.2006.18.005

• 博士论文 • 上一篇    下一篇

一个组播源认证方案的安全分析

何永忠1,2,冯登国2   

  1. (1. 北京交通大学计算机学院,北京 100044;2. 中国科学院软件研究所信息安全国家重点实验室,北京 100080)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2006-09-20 发布日期:2006-09-20

Security Analysis on a Multicast Source Authentication Scheme

HE Yongzhong1,2, FENG Dengguo2   

  1. (1. School of Computer, Beijing Jiaotong University, Beijng 100044; 2. State Key Laboratory of Information Security, Institute of Software, Chinese Academy of Sciences, Beijing 100080)
  • Received:1900-01-01 Revised:1900-01-01 Online:2006-09-20 Published:2006-09-20

摘要: 组播源认证是组播通信中的一个研究热点。对一个基于不可靠通信信道的组播源认证方案进行了安全分析,给出了通过选择性地截留部分通信数据包,成功伪造了一个新的流签名的攻击方法。基于Chernoff界,讨论并给出了对原方案的参数设置的改进和限制,从而提高了方案的安全性,避免选择性截留攻击。

关键词: 组播, 源认证, 选择性截留攻击

Abstract: Multicast source authentication is one of the main challenges of securing multicast communication. The non-repudiation multicast source authentication scheme proposed by Li and Huai is claimed to be very efficient and robust to packet loss. However, with selectively intercepting and discarding of some packets, the paper shows that this scheme is vulnerable to forgery attacks. Based on Chernoff bound, the attack can be defeated by careful selection of security parameters of the scheme.

Key words: Multicast, Source authentication, Selective interception attack

中图分类号: