摘要：

针对移动Ad Hoc网络无中心的特性及一般分布式认证中单跳认证节点少于门限值、CA节点不可靠等问题，采用基于多层簇的体系结构和 Feldman可验证秘密共享技术，提出一种基于簇结构的认证服务方案，结果证明该方案可实现各级簇头和簇成员的分布式认证，解决单跳内认证节点少于门限值问题，防止对系统私钥的重构等外部攻击及内部被攻破节点对分布式认证的干扰。

关键词: 移动Ad Hoc网络, 基于簇的体系结构, Shamir秘密共享

Abstract:

For the characteristics that Mobile Ad Hoc Network(MANET) has no center and the problems that in general distributed authentications, the number of one-jump certificate nodes is less than the threshold, and CA nodes are unreliable, a certificate service scheme in cluster-based architecture is proposed according to multi-layer-cluster architecture and Feldman’s verifiable secret sharing technology. It achieves the distributed authentication at all levels of cluster head and cluster members. The problem that the number of one-hop neighbor certification nodes is less than threshold value is resolved, which prevents malicious nodes working together to recover the secret key of system effectively, and avoids the interior authentication point broken to the distributional authentication disturbance.

Key words: Mobile Ad Hoc Network(MANET), cluster architecture, Shamir secret sharing

中图分类号: 

• TP309