Research Of Ad Hoc Network Authentication System Model Based On PKI

There are some unique characters in Mobile Ad Hoc NETworks (MANET): dynamic network configuration, no fixed infrastructure, fast self-organized autonomous system, etc. These characters make MANET has broad applications in real life, but at the same time face a lot of security problems, especially authentication problem. For the sake of solving these problems entirely in wired network, the feasible scheme is to use the Public Key Infrastructure (PKI). But the centralizing authentication system could not be applied directly to Ad Hoc network.In this paper, we first study the problems of Ad Hoc network application in PKI authentication system, and put forward that a very important way to solve the problems is to adopt distributing trust security policy. And the basic technology to found the policy is threshold cryptography system. This paper introduces an elliptic curve threshold signature scheme. Based on the commitment scheme of Pedersen and the concept of private secret evolving brought by Tzeng, the proposed scheme generally solves the problems existing in present threshold cryptography system. Compared to present threshold signature scheme used in mobile Ad Hoc network, our scheme has higher security and efficiency.On the basis of the scheme, a mobile Ad Hoc network authentication system model based on PKI is designed. By using clustering technology to improve network expansibility, the full net hierarchical distributing Virtual CA model is also brought forward. Meanwhile, the mechanism of the model is analyzed, and its security and feasibility is validated.