Research On Key Management And Secure Multicast In Mobile Ad Hoc Networks

Mobile ad hoc network (MANET) is a kind of self-organized peer-to peer networks formed temporarily by mobile nodes with wireless transceivers for special purposes. Security is essential for MANET, and it is also one of the hot areas in MANET research nowadays. Because of its characteristics, it is a big challenge in achieving such security goals as confidentiality, integrity, authentication and non-repudiation. Currently, the major sub-areas of security research include secure routing, secure multicast, trust and key management, intrusion detection and availability. Key management is the foundation of secure communication and secure route, group key management and data source authentication are two main hot points in secure multicast research.By analyzing the requirement and challenge of key management, secure multicast in MANET and some limitations of exiting work, this dissertation focuses on the problems of key management, group key management and multicast source authentication. The research work of this dissertation is supported by the National 863 Project under Grant No.2003AA142060 and the Natural Science Foundation of ShaanXi Province under Grant No. 2004A06.The major contributions of this thesis include:1. Analyzing the presented two mainstream key management schemes: the self-organized scheme and the distributed scheme, the hidden secure trouble of the distributed scheme: helping create CA share for new node will induce the own CA share's leakage, the DOS attack in certificate issue procedure: a wrong signature share will induce the whole certificate issue procedure's failing. Aiming to such defects, a "distributed key management framework" based the verifiable threshold cryptography and public verifiable non-interaction protocol is proposed.2. Analyzing the fairness and authority in certificate revocation in MANENT, Aiming to the malicious accusation attack, ensuring the fairness and authority of revocation, a novel certificate revocation algorithm based quantity is proposed. The performance in a not too big MANET is proved.3. Analyzing and comparing the performance of the three typical group key...