【作者】 王爽；

【导师】 袁占亭； 冯涛；

【作者基本信息】 兰州理工大学 ， 通信与信息系统， 2012， 硕士

【摘要】 网络编码是信息论领域中信息处理和传输理论研究的一个重大突破。与传统网络的中间节点只复制和传输数据包不一样，网络编码允许在网络的节点上对接收到的信息进行一定形式的编码处理。网络编码理论涉及了多用户信息论、计算机网络、组播技术和图论等诸多方面的理论，已成为提高网络吞吐量、鲁棒性和安全性的有效方法。网络编码能够带来多种益处，但是基于网络编码的系统非常容易遭受污染攻击，主要包括两种类型的污染攻击，搭线窃听攻击（被动攻击）和拜占庭攻击（主动攻击）。网络编码允许中间节点在转发数据前对收到的信息进行混合，一旦有数据包被攻击者破坏，受污染的节点进一步影响其他诚实节点。随着对安全、高效的数据通信要求越来越高，对网络编码中污染攻击问题的解决势必越来越重要。本文对安全网络编码理论进行了深入研究，所做的主要工作如下：针对网络编码中存在的窃听和拜占庭污染攻击，以单源多接收节点有向无环网络为模型，提出了一种抗污染攻击的UC安全网络编码方案记为UC-SNCAPA（UC Secure Network Coding Against Pollution Attacks）。UC-SNCAPA方案通过AONT（All-Or-Nothing Transform）块加密实现了对抗窃听攻击，不论窃听了多少条编码信道也得不到任何有意义的信息，利用NCS₁（Network Coding Signature）同态签名机制防止恶意节点的攻击。UC-SNCAPA方案首次将通用可复合UC （Universally Composable）安全框架应用到编码方案中，构建了编码环境下的理想函数Fsig，FCPKE，根据编码方案抽象出编码协议π_coding，在(F_CPKE,F_sig)辅助的混合模型下描述了π_coding，最后证明了π_coding安全实现了编码理想函数F_coding。通过证明，表明该方案具有抵抗窃听攻击和拜占庭攻击的能力。更多还原

【Abstract】 Network coding is a major breakthrough in the field of information processingand transmission theoretical study. Intermediate nodes only copy and transfer datapackets in the traditional network, contrary to that, network coding allows thereceived information on the nodes of the network to carry out some form of encodingprocessing. Network coding theory involves multi-user information theory, computernetworks, multicast technology and graph theory and other aspects of the theories, ithas become an effective way to improve network throughput, robustness andsecurity.Network coding can bring many benefits, but the system based on networkcoding is vulnerable to suffering from pollution attack, including wiretappingattacks （passive attacks） and Byzantine attacks （active attacks）. Network codingallows the routers to mix the received information before forwarding them to thenext nodes. Once a packet is corrupted, a single error further will cause pollution ofdownstream nodes like the plague spread on the network. With higher and higherdemand for security and efficient data communication, the solution of pollutionattacks problems in network coding scenarios is bound to more and more important.The work in this paper is to research on the secure network coding theory, themain work are as follows:Considering the pollution attacks in network coding, in the single-sourcemulti-sinks directed acyclic network, we present a universally composable securenetwork coding against pollution attacks （UC-SNCAPA）. By means of AONT（All-Or-Nothing Transform） encryption an eavesdropper is unable to get anymeaningful information no matter how many channels are wiretapped，and we adoptthe signature scheme NCS1（Network Coding Signature） to prevent malicious nodes.UC-SNCAPA scheme applied UC （Universally Composable） security frameworkto the network coding scheme for the first time. We formulate a universallycomposable network coding scheme π_coding in (F_CPKE, F_sig)-hybrid model. Here,F_CPKE is the encryption ideal functionality, and F_sig is the signature idealfunctionality. Lastly, we have proved the protocol π_coding securely realizes F_coding inthe (F_CPKE, F_sig)-hybrid model, here, F_coding is the ideal functionality of networkcoding against pollution attacks in the UC framework. By the security proof, it is showed that the proposed scheme has the ability of resistance eavesdropper and theByzantine attacker更多还原