首页 | 本学科首页   官方微博 | 高级检索  
     

无线Mesh网络中多服务器的门限认证系统构建
引用本文:刘东升,杨亚涛. 无线Mesh网络中多服务器的门限认证系统构建[J]. 中山大学学报(自然科学版), 2008, 47(6)
作者姓名:刘东升  杨亚涛
作者单位:1. 浙江工商大学计算机与信息工程学院,浙江,杭州,310018
2. 北京邮电大学网络与交换国家重点实验室信息安全中心,北京100876;北京电子科技学院,北京100070
基金项目:浙江省科技计划,北京电子科技学院校科研和教改项目
摘    要: 在无线Mesh网络中,传统的集中式AAA认证模式很容易由于遭受DOS攻击或者被恶意者的破坏而导致服务瘫痪,为了解决该问题,基于Asmuth-Bloom门限机制,提出了多服务器的无线Mesh网络门限认证系统模型,设计了具体的无线接入和认证流程。在该系统中,只有认证服务器组中的成员才可以执行有效的认证过程,同时,只有当认证服务器组中的n个服务器中有不少于t个服务器才能恢复共享密钥K,这样可以避免假冒攻击和防止单个服务器被攻陷。分析结果表明,通过所计设的门限认证系统,保证了接入认证过程的有效性,提高了系统的安全性能,为无线Mesh网络的接入认证提供了一条有效解决思路,具有较高的实际应用和参考价值。

关 键 词:网络安全  认证  门限技术  无线Mesh网络  认证服务器组
收稿时间:2008-09-10;

Design of Threshold Authentication System with Multi-Servers in Wireless Mesh Network
LIU Dong-sheng,YANG Ya-tao. Design of Threshold Authentication System with Multi-Servers in Wireless Mesh Network[J]. Acta Scientiarum Naturalium Universitatis Sunyatseni, 2008, 47(6)
Authors:LIU Dong-sheng  YANG Ya-tao
Affiliation:(1.College of Computer and Information Engineering, Zhejiang University of Industry and Business, Hangzhou 310018,China;2. Information Security Center, Beijing University of Posts and Telecommunications,State Key Laboratory ofNetworking and Switching, Beijing 100876,China;3. Beijing Electronic Science &; Technology Institute, Beijing 100070,China)
Abstract:Traditional centralized AAA authentication model is prone to suffer from service paralysis due to the DoS (Denial of Service) attack or malicious destroy in wireless Mesh network. To salve this isswe, the scheme of threshold authentication with multi-servers is proposed based on the Asmuth-Bloom threshold technology, then wireless access and authentication flow are designed and analyzed. Only the members within Authentication Server Group (ASG) can carry out the valid authentication process, moreover, only t or more than t authentication servers can resume the shared key K, which can avoid the fraudulent attack and can prevent single authentication server from being captured. Analysis result shows that, the validity of authemtication mechanism can be guaranteed and the security of system also can be enhanced by the designed threshold authentication systme, our novel idea provides an effective solution to access authentication in wireless Mesh network and has better applied and referenced value.
Keywords:network security  authentication  threshold technology  wireless Mesh network  authentication servers group
本文献已被 维普 万方数据 等数据库收录!
点击此处可从《中山大学学报(自然科学版)》浏览原始摘要信息
点击此处可从《中山大学学报(自然科学版)》下载全文
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号