摘要: 现有ad hoc网络协议都是假设节点进入网络时已经分配了IP地址,而且在节点进入网络时假设节点之间无条件信任,这种缺乏对安全性的考虑是无法在实际战场环境下使用的。该文提出一种新的安全的解决方案,它由建立路由前的节点间的相互身份认证和安全地址分配(公钥散列产生节点地址)两个部分组成。方案可以有效地防止各种相关的攻击,最后还进行了方案的效率分析。
关键词:
Ad hoc,
身份认证,
地址分配,
网络安全
Abstract: The existing routing protocols of ad hoc networks works on the fact that IP addresses of hosts are already configured before they join the network, and all nodes exchange data on the basis of trusting each other. So they are less secure and unavailable in a hostile environment. A new secure scheme of authentication and auto-configuration for mobile ad hoc networks is proposed. This scheme authenticates the participants using digital certification and automatically allocates the IP addresses resulted from a one-way hash function on the public key before nodes access to network, so it can prevent attacks such as address spoofing and those associated with authentication and auto-configuration in the ad hoc network. Security and efficiency of the scheme are discussed.
Key words:
Ad hoc,
Authentication,
Auto-configuration,
Network Security
中图分类号:
许 钟;戴冠中;杨德明;张 治. 一种移动Ad Hoc网络中身份认证与地址分配方案[J]. 计算机工程, 2007, 33(11): 135-137,.
XU Zhong; DAI Guanzhong; YANG Deming; ZHANG Zhi. An Authentication and Auto-configuration Scheme in Mobile Ad Hoc Networks[J]. Computer Engineering, 2007, 33(11): 135-137,.