节点文献

无线传感器网络密钥管理研究

Research on Key Management for Wireless Sensor Networks

【作者】 蔡云峰

【导师】 毛宇光;

【作者基本信息】 南京航空航天大学 , 计算机科学与技术, 2010, 硕士

【摘要】 无线传感器网络带来了信息感知和信息获取的一场革命,改变了人类与自然界之间的交互方式,无论在军用还是民用领域都有着十分广阔的应用前景。由于传感器网络容易遭受各种攻击,其安全问题成为首要的关注焦点。密钥管理作为一种基础性的安全服务,对传感器网络的安全具有重要作用。本文针对密钥管理展开了研究,并取得了一些有意义的研究成果,其主要内容如下:首先,提出了一种基于蜂窝模型的密钥预分配方案,根据蜂窝模型进行区域划分、密钥池构建、密钥分配和节点部署,提高了节点间建立共享密钥的概率,使网络具有更好的连通性。其次,提出了基于散列链的异构无线传感器网络密钥管理方案,该方案采用散列链技术,运用秘密分存策略,使感知节点妥协不会暴露网络中其它的安全通信链路,同时避免了簇头节点妥协导致的单点失效问题,另外,利用高性能的簇头节点和基站构成两级KDC,通过在线的密钥分发保证了网络的本地连通性为1。与现有方案相比,该方案提高了抗毁性和连通性,同时减少了存储开销。最后,针对基于双向散列链的自愈组密钥分发机制存在的合谋问题,提出了滑动窗口自愈的密钥分发机制。通过采用带密钥的双向散列链,引入自愈密钥参与会话密钥的计算,通过滑动窗口控制自愈区间,减少了密钥暴露,实现了抗区间合谋攻击的能力。相关分析和仿真结果表明,该方法在保证效率的前提下,大大降低了合谋风险,有效地提高了安全性。

【Abstract】 Wireless sensor networks (WSNs) are bringing about a revolution in the means of information perception and information acquisition. It changes the interactive mode between human and nature. WSNs are prone to all kinds of attacks thus security becomes the first concern. As a foundational security service, the key management plays an important role in the security of WSNs.This thesis focuses on the key management problems, and presents some positive research achievements. Firstly, a hexagon-based key predistribution scheme was presented. It uses hexagon-based model to partition the deployment area, construct the key pool, distribute the keys and deploy the sensor nodes. This scheme increases the probability of pair-wise key establishment and improves the connectivity of WSNs. Secondly, a key management scheme for heterogeneous wireless sensor network using keyed-hash chain is presented. It uses keyed-hash chain with the strategy of decentralized secret storage, so as to a compromised node will not discolse the secure links of the other nodes, and at the same time, which can avoid that the network goes into paralysis for cluster head becomes invalid. The high-powered cluster heads and base station make up of the two levels KDC, which can improve the connectivity to 1 by online key distribution. Correlation analysis results show that compared with the former works, this scheme greatly improves the resilience and key connectivity of WSNs, and lowers the storage costs. At last, a sliding-window self-healing key distribution mechanism is presented for self-healing group key distribution mechanism based on dual direction hash chain is usually vulnerable to collusive attack from its adversaries. It uses keyed-hash function to form dual directional hash chain. The self-healing key takes part in the computing of the corresponding session key. By using a sliding-window, the self-healing interval is limited to a certain range, which reduces the exposure of keys and achieves the capability of resisting collusion attack from the nodes lying outside the self-healing interval. Correlation analysis and simulation results show that compared with the former works, the key distribution mechanism greatly lowers the risk of collusion attack and effectively improves security under the same efficiency level.

节点文献中: