无线Mesh网络中多服务器的门限认证系统构建

 在无线Mesh网络中，传统的集中式AAA认证模式很容易由于遭受DOS攻击或者被恶意者的破坏而导致服务瘫痪，为了解决该问题，基于Asmuth-Bloom门限机制，提出了多服务器的无线Mesh网络门限认证系统模型，设计了具体的无线接入和认证流程。在该系统中，只有认证服务器组中的成员才可以执行有效的认证过程，同时，只有当认证服务器组中的n个服务器中有不少于t个服务器才能恢复共享密钥K，这样可以避免假冒攻击和防止单个服务器被攻陷。分析结果表明，通过所计设的门限认证系统，保证了接入认证过程的有效性，提高了系统的安全性能，为无线Mesh网络的接入认证提供了一条有效解决思路，具有较高的实际应用和参考价值。

Design of Threshold Authentication System with Multi-Servers in Wireless Mesh Network

Traditional centralized AAA authentication model is prone to suffer from service paralysis due to the DoS (Denial of Service) attack or malicious destroy in wireless Mesh network. To salve this isswe, the scheme of threshold authentication with multi-servers is proposed based on the Asmuth-Bloom threshold technology, then wireless access and authentication flow are designed and analyzed. Only the members within Authentication Server Group (ASG) can carry out the valid authentication process, moreover, only t or more than t authentication servers can resume the shared key K, which can avoid the fraudulent attack and can prevent single authentication server from being captured. Analysis result shows that, the validity of authemtication mechanism can be guaranteed and the security of system also can be enhanced by the designed threshold authentication systme, our novel idea provides an effective solution to access authentication in wireless Mesh network and has better applied and referenced value.