计算机科学与探索 ›› 2018, Vol. 12 ›› Issue (7): 1126-1135.DOI: 10.3778/j.issn.1673-9418.1703006

• 网络与信息安全 • 上一篇    下一篇

飞行器自组网络非交互式动态群组密钥管理研究

周健,施文君,殷红彩,孙丽艳   

  1. 1. 安徽财经大学 管理科学与工程学院,安徽 蚌埠 233041
    2. 北京邮电大学 计算机学院,北京 100083
  • 出版日期:2018-07-01 发布日期:2018-07-06

Research of Non-Interactive Dynamic Group Key Management for Flying Ad Hoc Networks

ZHOU Jian, SHI Wenjun, YIN Hongcai, SUN Liyan   

  1. 1. School of Management Science and Engineering, Anhui University of Finance and Economics, Bengbu, Anhui 233041, China
    2. School of Computer Science and Technology, Beijing University of Posts and Telecommunications, Beijing 100083, China
  • Online:2018-07-01 Published:2018-07-06

摘要:

移动飞行器网络具有广阔的应用前景,但高速移动、频繁拓扑变化和有限能力等特点对飞行器网络的群组密钥管理提出新的要求,交互式密钥协商协议不仅增加了飞行器网络成员交互的延时,而且消息复杂度与网络规模相关。针对这一问题,提出一种无需交互的动态群组密钥管理方案。该方案中公开加密密钥对应多个具有密钥独立性的秘密解密密钥,并绑定成员身份,群组密钥操作中只需更新公开加密密钥,非退出或加入成员的私有解密密钥保持不变。在性能上,该方案中非更新成员无需交互,密钥更新消息负载与网络规模无关,解决密钥更新的1-affect-n问题,隐含的身份认证可进一步减少延时;在安全性上,保证前向和后向安全性。因此该方案适合快速移动和拓扑频繁变化的飞行器网络。

关键词: 飞行器自组网络, 群组密钥管理, 密钥合并/分裂操作, 前向后向性安全, 身份

Abstract:

Flying Ad Hoc network has wide application prospect in the future. However, it has some significant characteristics including frequent topology change, high speed mobility and constrained capability, so some interactive key agreement protocols increase time delay among members of flying networks for security targets, and their message complexity of rekeying is related to the network scale. To deal with the problem, this paper proposes a non-    interactive dynamic group key management scheme (NIGKM). In the proposed scheme, a public encryption key corresponds to a plurality of secret decryption keys which have key independence, and those decryption keys bind entities identities, only the public key must be updated in rekeying for group key operations, however non-leaving or non-joining members still keep their secret decryption keys unchanged. In the efficiency aspect, as there is not interaction among non-leaving or non-joining members, the message cost is reduced and the 1-affect-n problem is solved in rekeying, implicit authentication further reduces latency without interaction. In the security aspect, the forward/backward security is guaranteed. Therefore, the proposed scheme is suitable to the frequent topology change and high speed mobility flying Ad Hoc networks.

Key words: flying Ad Hoc network, group key management, key merging/partition operation, forward/backward  , security, identity