摘要： 在分析现有的Ad Hoc网络密钥管理方案存在的缺陷基础上，基于无证书密码学提出一个Ad Hoc网络密钥管理方案。将系统主密钥分发给一组预选节点，由其合作实现私钥生成中心PKG功能。该方案有效地克服密钥托管问题与恶意节点的合谋攻击，同时一次单播即可安全高效地实现节点私钥更新。分析与仿真结果表明其具有较高的安全性和实用性。

关键词: 移动自组网, 秘密共享, 无证书的密码学, 密钥管理, 密钥托管

Abstract: Based on the analysis of existing key management model to Ad Hoc networks, a key management scheme based on certificate-less cryptography is proposed, which employs the secret sharing technique to distribute system key among a pre-selected set of nodes, which offers a collaborative private-key-generator service. The scheme can strongly overcome the key escrow and resist coalition of adversaries. The construction method ensures secure and efficient network-wide key update by single broadcast. The analysis and simulation results show the scheme is secure and effective.

Key words: mobile Ad Hoc networks, secret sharing, certificate-less cryptography, key management, key escrow

中图分类号: 

• TP393