【作者】 于珏；

【导师】 张中兆；

【作者基本信息】 哈尔滨工业大学 ， 信号与信息处理， 2008， 博士

【摘要】 家庭网络作为一个为家庭用户提供家庭娱乐、数据传输以及家电控制等智能服务的网络系统,可以实现家庭内部节点之间的互联互通,还可以通过家庭网关接入到广域网。目前,家庭网络的组网技术多达数十种,而宽带无线技术是最适合家庭网络的组网技术。Ad hoc网络是由移动节点构成的,不依赖任何固定基础设施的无线网络。由于不需要固定基础设施的支持,以及迅速部署的特点,Ad hoc网络非常适合通信基础设施不存在或者无法正常使用的环境,其潜在的应用领域非常广泛。移动Ad hoc网络具有在小范围内无需网络基础设施、随时进行组网的特性,有利于组建一个操作简单、组网灵活、价格低廉且范围小的家庭网络。本文以移动Ad hoc组网技术在家庭网络的应用为背景,对家庭网络的分层模型、Ad hoc网络路由协议、Ad hoc家庭网络的安全策略和机制进行了深入研究。针对家庭网络组网的业务和服务特点,根据OSI模型,在深入研究数据链路层信道共享技术中MAC层CSMA/CA协议及其DCF机制和MAC层协议的信道利用效率的基础上,提出了一种基于Ad hoc模式的无线家庭网络分层模型,设计出一个用于家庭网络节点间通信的通信子网,包括物理层、数据链路层和网络层,并对物理层传输技术、链路层信道共享技术以及网络层路由技术进行了分析和研究。仿真结果表明,这种网络结构具有即兴组网、操作简单、组网灵活、价格低廉等特点,能够满足家庭网络的需求。路由协议是Ad hoc网络的关键技术,也是影响网络整体性能最重要的因素之一。传统的固定网络中,主机之间的连接是固定的,网络采用层次化的体系结构,并具有稳定的拓扑,具有路由器服务、命名服务、目录服务的功能;而在移动Ad hoc网络中没有基站或中心节点,所有节点都是移动的,网络的拓扑结构动态变化,节点间通过无线信道进行连接,没有专门的路由器,节点自身同时需要充当路由器,没有命名服务、目录服务等网络功能。针对传统的路由协议已经不能够适应Ad hoc网络动态变化的拓扑结构的特点,研究了AODV和DSR两种按需路由协议的原理及各自特点。按需路由虽然会增加数据分组因为等待路由建立产生的延时,但由于协议不需要节点周期性地交换路由信息,因而节省了有限的无线资源.这一点在无线通信中尤为重要。在此基础上,提出利用本地化的路由自愈模型对AODV路由进行优化的方法,并将IPv6中采用的选播协议模型引入到Ad hoc家庭网中,设计了基于DSR的选播路由协议A-DSR,以解决自组网由于节点移动而造成路由失效,必须随时对路由情况做出修正的问题。仿真结果表明改进的路由协议算法通过与数据链路层的合作,能够较好地改善路由质量,网络的吞吐率及协议的性能均得到了提高。由于Ad hoc网络具有移动、多跳和自组织的特点,可以提供随时随地的连接,从而产生了许多新的服务和应用,但无线链路的不安全本质、高度动态变化的网络拓扑结构和有限的资源也带来了许多新的安全威胁,传统网络的安全解决方案通常已不再完全适合Ad hoc网络。根据家庭网络环境的安全需求,重点讨论可以采用的安全策略和相关机制,并提出了一种适用于Ad hoc家庭网的网络安全体系。由于路由协议对于Ad hoc网络至关重要,所以在Ad hoc网络安全的研究中,安全路由协议也是最活跃的一个领域。本文详细分析了Ad hoc家庭网络的特点和安全威胁,根据Ad hoc与家庭网的安全需求,在掌握公钥密码技术基本原理和对几种应用广泛的公钥密码体制如RSA、ECC、NTRU等算法进行分析的基础上,研究了Ad hoc家庭网络的安全策略和相关机制,提出一种基于NTRU公钥算法与IDEA私钥算法相结合的安全路由机制,设计并实现了一种基于AODV协议的安全路由算法,最后对安全机制中的CA系统进行了构建,采用离线的CA和分布式密钥管理相结合的策略,保证设计的基于Ad hoc技术的家庭网络的安全性。通过仿真分析证明,这种安全路由机制和算法,只增加少量的路由负载和路由获取时延,就可以保证路由协议的完整性和正确性。本文首先建立了一种基于Ad hoc模式的无线家庭网络分层模型,然后利用本地化的路由自愈模型对AODV路由进行优化,并将IPv6中采用的选播协议模型引入到Ad hoc家庭网中,设计了基于DSR的选播路由协议A-DSR,提出一种基于NTRU公钥算法与IDEA私钥算法相结合的安全路由机制,设计并实现了一种基于AODV协议的安全路由算法。仿真结果表明,把Ad hoc组网技术用于组建无线移动家庭网络是可行的。更多还原

【Abstract】 Home network is an intelligentized service network system which can connect the in-house nodes each other, offering consumers entertainments, data transmission and home electric appliances etc. The in-house nodes can enter internet through the house gateway. Broad band wireless technology is the best network construction technology for home networks. Ad hoc network is a wireless network which is composed of locomotive nodes and independent of any immovable basic establishments. Ad hoc network fits the situation well where there are no communication basic establishments or the basic establishments can not be used because of the characteristic that it dos not need the supports of immovable basic establishments. Hence, it has wide potential application domains. Locomotive Ad hoc network can be built without network basic establishments in a small area at any moment, so that it benefits to construct a home network with simple operations, flexibility, low price and small area. Therefore, this dissertation has put forward a wireless home network based on Ad hoc network and research on layer model of home network, Ad hoc network router protocols and the security strategies and mechanism of Ad hoc home network.This dissertation has proposed the layer model of wireless Ad hoc home network based on OSI model after it has researched the CSMA/CA protocols and its DCF mechanism of MAC layer in channel share technique in data link layer and channel occupied rate of MAC layer. And it has designed a communication subnet used in communication between nodes of home network, including physical layer, data link layer and network layer, and analyzed and researched on transmission technique in physical layer, channel share technique in data link layer and router technique in network layer. Simulation results show that this kind of network structure has the feature of improvisatorial organizing, simple operations, flexibility, and low price etc, which can satisfy the requirements of home network.Router protocols are the key technology of Ad hoc network and one of the most important factors which can influence the performance of the whole network. In conventional immovable networks, connections between host computers are immobile, and the system structure of network is hiberarchy, has a steady topological structure, can provide router service, naming service and catalog service, and can implement relative security strategies. However, in mobile Ad hoc network, there are no base stations or central node, all nodes are locomotive, and its topological structure are dynamic. Nodes are connected by wireless channel. There are no expert routers and the node itself works as a router and it has no functions such as naming service and catalog service. Thus, new router protocols have to be designed because the conventional router protocols can not suit the dynamic topological structure of the Ad hoc network. This dissertation has studied and designed the Ad hoc home network router, especially studied on the optimization of network layers. And it has improved the AODV router based on a local self recover model of router, introduced the multicast protocols model in IPv6 into the Ad hoc home network, and designed A-DSR, the multicast router protocols based on DSR, to improve router quality. Simulation results show that both the throughout and performance of the protocols of Ad hoc home network has been improved.Moreover, Ad hoc network has many new services and applications because it is mobile, multi-jump and self-organized and can connect at any area and at any time. But, the insecure inbeing of wireless link route, the high dynamic topological structure of network and limit resources have also bought much new security threats. So, the security solutions to conventional networks do not entirely suit Ad hoc network any more. This dissertation has analyzed characteristics of Ad hoc network and security threats in detail and has proposed the security strategies of Ad hoc home network and relative mechanism based on the security requirements of Ad hoc and home network.Security router protocols are a most active domain in the research of Ad hoc network security because router protocols are quite important for Ad hoc network. Presently, the research of Ad hoc network security is still in a preliminary phase, and it is necessary to provide basic security services, authentication, key management and safe route, for networks. This dissertation has put forward a safe route mechanism based on combination of NTRU public-key algorithm and IDEA private-key algorithm and designed and realized it. Finally, this dissertation has constructed the CA system in security mechanism, adopting the strategy of combining off-line CA and distributing key management to ensure home network based on Ad hoc technology work well, be inexpensive, and especially be safe, with definite practical application significance.更多还原