摘要
针对现有移动自组网安全路由协议难以兼顾数据完整性和机密性的问题,提出了一种结合数据完整性保护和数据机密性保护的安全路由协议。在数据完整性保护方面,采用单向hash函数和密钥生成消息认证码,鉴别路由中数据的完整性;在数据机密性保护方面,采用μTESLA协议传输加密数据包,在不同的时段传输不同的密钥,通过对称密钥的延迟透露模拟非对称机制,降低认证广播的资源消耗。仿真实验表明,该方法不仅在安全性方面优于现有的路由协议,而且在报文送达率、路由开销和端到端平均时延评价指标上也优于现有路由协议。
For solving the problem that traditional routing protocols for mobile ad hoc network does not give consideration to data ′ s completeness and confidentiality, a secure routing protocol is proposed by combining data ′ s completeness protection with confidentiality protection. On the aspect of protecting data ′ s completeness, one way hash function and key are used to generate MAC, which is used to authenticate data ′ s completeness. On the aspect of protecting data ′ s confidentiality, μTESLA protocol is used to transmit cryptographic packets, deliver different key with different time interval, and execute a delayed disclosure of symmetric keys to simu-late asymmetric mechanism, for reducing the resource consumption of authenticated broadcast. Simulation shows that the new method wins out over traditional routing protocols not only on the aspect of security, but also on the evaluating indicators including packer delivery ratio, routing overhead and end-to-end mean latency.
作者
杨官霞
周頔
张展
Yang Guanxia;Zhou Di;Zhang Zhan(Department of Computer and Information Technology,Zhejiang Changzheng Vocational & Technical College,Hangzhou 310023,China;Sichuan University of Arts and Science,Dazhou 635000,China;School of Electrical Engineering and Automation,Henan Polytechnic University,Jiaozuo 454000,China)
出处
《电子技术应用》
2018年第6期94-98,共5页
Application of Electronic Technique
基金
浙江自然科学基金项目(LY16A010020)
关键词
移动自组网
路由协议
消息认证码
密钥
单向函数
认证广播
mobile ad hoc network
routing protocol
MAC
key
one way function
authenticated broadcast
