Research On Authentication Protocol Of Wireless Mesh Networks Based On Lightweight CA

Wireless mesh network(WMN) is an integration of wireless local area network and mobile ad hoc network, which has the characteristics of dynamic self-organization, self-configuration and self-healing and so on. WMN is a kind of new multi-hop wireless network architecture and a key technology in the next-generation wireless networks.As a result of the openness of wireless networks and the limitation of resources, security problems have become increasingly prominent. Authentication, a security mechanism, is the first line of defense to secure the network. At present, the identity authentication technology has been widely used in the network and information security. However, a specific identity authentication protocol can not be applicable for all application scenarios. Therefore, appropriate authentication protocol should be designed in accordance with different require. This paper summarizes the security services and security attributes that are required for the design of appropriate authentication protocol. Besides, the design principles for identity authentication protocol are also elaborated in this paper. It is based on the combination of Lightweight CA(Lightweight Certificate Authority, LCA) authentication mechanism and the elliptic Curve cryptosystem(the Ellipse Curve Cryptograph, ECC)that authentication protocol have been researched. In this paper, the main research contents are as follows:1、This paper proposes a new lightweight CA based access authentication protocol and utilizes BAN logic to verify correctness of the authentication procedures. Meanwhile, the new protocol can prevent various attacks, including impersonation attack and replay attack, and have communication with high efficiency.2、On the basis of access authentication protocol, this paper puts forward a new lightweight CA based two-way authentication protocol between the mesh client. According to BAN logic proof and security analysis, the new protocol can prevent various attacks, including impersonation attack and replay attack and can achieve various security attributes, including forward secrecy. Compared with other protocols, the new protocol has better computation efficiency.3、Man-in-the-middle can’t be resisted by authentication protocol between the mesh client based on the elliptic curve computational Diffie Hellman problem. In order to solve that problem and meet the need of security service in application of different scenarios, a new authentication protocol is proposed to prevent various attacks, including eavesdrop attack and man-in-the-middle attack. This protocol can achieve higher level of security with little increase of computational complexity.