Research On Secret Share Updating And Secret Sharing Member Enrollment Technology In Ad Hoc Network

Ad hoc network is a self-organized network with highly dynamic topological framework and arbitrarily-movable nodes. Different to traditional wireless network, it is independent to any stable establishment, and it holds the network connection by the cooperation of the moving nodes. To design an Ad hoc network, one of the main challenges is that it is liable to some security attacks, such as wiretapping, falsification, reject to serve.The PKI (Public Key Infrastructure) has been considered as the foundation of the security services in Ad hoc network. It distributes the system signing key over n CA (Certification Authority) nodes of the network by (k,n) threshold secret sharing scheme, each CA node holds a share of the key, we call it secret share. To prevent a malicious user from collecting enough secret shares over a long period, the secret shares shall be updated periodically. In addition, according to the mobility of the Ad hoc network, the CA group holding the secret shares need to be able to be updated at any time, so the member enrollment is another important problem in Ad hoc network.In this paper, firstly, the available secret share updating schemes are analyzed, and a threshold-based secret share updating scheme is proposed. The new scheme fully considers the characteristic of Ad hoc network and can guarantee the validity of the secret share updating. It also associats the complexity of the secret share updating to the security of Ad hoc network, according to the point that the security of Ad hoc network is related to the threshold value. Finally we implement the scheme and compare it to the available secret share updating scheme.Secondly, the available secret sharing member enrollment schemes are analyzed, and a new lightweight secret sharing member enrollment scheme is given, based on Jia Yu's scheme. The new scheme reduces the communication cost between nodes in the process of the member enrollment, with the help of the assistant node. Finally, we discuss the implementation of the lightweight secret sharing member enrollment scheme.