Fagen Li,Masaaki Shirase,Tsuyoshi Takagi

DOI: https://doi.org/10.1007/978-3-540-88140-7_11

2008-01-01

Abstract:As various applications of wireless ad hoc network have been proposed, security has become one of the big research challenges and is receiving increasing attention. In this paper, we propose a distributed key management approach by using the recently developed concepts of certificateless public key cryptography and threshold secret sharing schemes. Without any assumption of prefixed trust relationship between nodes, the ad hoc network works in a self-organizing way to provide the key generation and key management services using threshold secret sharing schemes, which effectively solves the problem of single point of failure. Certificateless public key cryptography is applied here not only to eliminate the need for certificates, but also to retain the desirable properties of identity-based key management approaches without the inherent key escrow problem.

Fuyou Miao,Wenjing Ruan,Xianchang Du,Suwan Wang

DOI: https://doi.org/10.1007/978-1-4614-6154-8_38

2013-01-01

Abstract:The paper first proposes a fully self-organized key management scheme in mobile ad hoc networks which is both certificateless and free from any trusted third party such as Certificate Authority or Key Generation Center. The scheme allows a node to set up the public/private key pair all by itself and use the public key as its identity according to the property of ad hoc networks. Based on the scheme, some applications such as Encryption, Signature, Signcryption algorithms are given. Among these algorithms, the security of encryption algorithms is detailed and the AdvancedEnc is proved to be IND-CCA secure encryption algorithm under the random oracle model. These applications show that our key management scheme is self-organized, simple, efficient and practical. © 2013 Springer Science+Business Media.

Qiuyuan Huang,Renzhi Cao,Bobin Deng,Xingfu Wang

DOI: https://doi.org/10.1109/csae.2011.5953214

2011-01-01

Abstract:Since the Ad hoc network possesses characteristics including distribution, mobility etc, we propose Hash-chain based Public Key Management Algorithm of Ad hoc network in this work and make comparisons with existing public key management approaches. It has reached the goals of public key distribution, application, maintenance and revocation, and the use of Montgomery Thinking can improve the calculation speed about 41.25%. The innovations of adding of starting time into the certificate and the reuse of the time parameters can effectively avoid the effect of private key leakage and replay attacks, and give the system higher security and better space-time costs. Finally the result of the experiment proves that this is an effective public key management algorithm.

Hoang Nam Nguyen,Hiroaki Morino

DOI: https://doi.org/10.1007/11596042_93

2005-01-01

Abstract:Providing secure communications is a crucial task for the success of future ubiquitous mobile communication systems. Using public key infrastructure (PKI) is considered as a good solution to fulfill the task. However, as mobile ad hoc networks (MANET) inherit unique characteristics such as dynamic topology, non-infrastructure architecture, centralized PKI architectures are not suitable for dynamic MANET. The use of distributed PKI models is more appropriate but requires additional modifications to adapt with network changes. In this paper, we introduce a novel key management scheme for MANET, which exploits advantages of threshold cryptography. The major innovative aspect of this scheme is the use of temporal substitute certificate authorities (SCA), which form a PKI model of multi SCA groups. Performance results obtained by computer simulation show that the proposed key management scheme can reduce the latency of authentication, certificate update delay and the signaling load.

Qi Liu,Xiangyu Bai

DOI: https://doi.org/10.1109/iceiec.2017.8076576

2017-01-01

Abstract:In order to ensure the security of mobile ad hoc networks (MANETs), the research on certificateless key management scheme is attracting more and more attention. The certificateless key management scheme can well resist the key escrow problem and it is very suitable for MANET, which is source-constrained and has no public key infrastructure. In this paper, we give an overview of some recent certificateless key management schemes and analyse their advantages and disadvantages. Then we make a comparison of their main methods, key distribution, private key generation and their calculation cost. Finally we put forward a suggestion to solve the problems existing in the certificateless key management scheme.

GE Meng,ZHAO Xibin,LAM Kwok-yan

DOI: https://doi.org/10.3321/j.issn:1000-0054.2008.07.033

2008-01-01

Abstract:The negative impact of network partitions on the availability of key management services in mobile ad hoc networks(MANET) is alleviated by a robust key management approach for MANET based on the distributed certificate authority(DCA).Auxiliary shares are used to increase the redundancy of shares in the networks thereby ensuring robustness and security at the same time.Simulations show that the average failure ratio for DCA requests is reduced by more than 50%. A security analysis and simulations show that the approach ensures system robustness and thwarts common attacks.

RD Li,J Li,H Kameda,P Liu

DOI: https://doi.org/10.1002/wcm.396

2006-01-01

Wireless Communications and Mobile Computing

Abstract:A mobile ad hoc network (MANET) is the cooperative engagement of a collection of wireless mobile nodes without the aid of any established infrastructure or centralized administration. The conventional security solutions to provide key management through accessing trusted authorities or centralized servers are infeasible for this new environment since mobile ad hoc networks are characterized by the absence of any infrastructure, frequent mobility, and wireless links. In this paper, we propose an on-demand, fully localized, and hop-by-hop public key management scheme for MANETs. It can be performed by generating public/private key pairs by nodes themselves, issuing certificates to neighboring nodes, holding these certificates in their certificate repositories, and providing authentication service adaptive quickly to the dynamic topology of the network without relying on any servers. Also, our scheme can be performed successfully as long as there is a physical communication line between two nodes, and it is accustomed well to the on-demand routing for MANETs. Copyright © 2006 John Wiley & Sons, Ltd.

LIU Fu-li,WU Bin,YANG Shou-bao,JI Wen

DOI: https://doi.org/10.3969/j.issn.1009-8054.2009.09.046

2009-01-01

Abstract:Public key certificate is an important carrier for public key. With the development of self-organized networks and distributed networks, such as Ad Hoc Networks, a secure self-organized certificate management scheme is required urgently. In this paper, a new one-way hash chain based self-organized certificate management scheme is proposed. In this scheme, nodes themselves can create, disseminate, renew, certify and revoke the certificate without the supports by third trusted party online. As its security relies on the security of private key and the one-way hash chain, this scheme is more secure than previous ones.

Danyang QIN,Renheng XU,Lin MA,Qun DING

2013-01-01

Abstract:Wireless multihop communication network is an important part of modern communication network, because of its flexible forms of networking, not relying on any fixed infrastructure to achieve network connectivity and data transfer, but through the mobile nodes' collaboration and self-organization. The negative impact of network partitions on the availability of key management services in wireless multihop communication network will be alleviated by a robust key management scheme based on the traditional distributed certificate authority (DCA) proposed in this paper. Auxiliary shares are used to increase the redundancy of shares in the networks thereby ensuring robustness and security at the same time. Simulating results show that the average failure ratio for DCA requests is reduced by more than 5 %, and the successful rate of establishing secure link is greatly improved. Security analysis and simulations show that the approach ensures system robustness and thwarts common attacks.

Zhang Changlun,Liu Yun,He Dequan

2007-01-01

Abstract:Requiring no heavy infrastructure and complex bootstrapping, certificate chaining becomes a potential candidate for self-organized public key management for large scale mobile ad hoc networks. In this paper, we propose a new self-organized public key management scheme using certificate chaining. By signing a few certificates among cluster heads, certificate graph will emerge the small world phenomenon apparently, which can help improving the success rate of key authentication. Through both analysis and simulation results, we demonstrate effectiveness of our scheme.

Bolin Wang,Lianghui Ding,Feng Yang,Liang Qian,Ning Liu

DOI: https://doi.org/10.1109/APCC47188.2019.9026453

2019-01-01

Abstract:In Aeronautical Ad Hoc Network (AANET), attacks are often diverse, and a lack of preventive measures may cause serious losses. Therefore, compared with traditional MANET, AANET has higher security requirements. In this paper, we propose a trust-based partially distributed key management scheme to consider both capability and integrity trust of network. Capability trust reflects the link state of the routing path and the metric is used to choose reliable intermediate nodes for transmission. The integrity trust distinguishes compromised nodes from well-behaving nodes. The key management scheme only issues certificates to the well-behaving nodes to verify their legitimacy. We perform simulations and compare the proposed scheme with a composite trust-based public key management scheme (CTPKM). The simulation results demonstrate the performance advantages of our scheme in terms of overhead, packet delivery ratio and evaluation accuracy.

TAN Xue-zhi,WU Shao-chuan,JIA Shi-lou

DOI: https://doi.org/10.3969/j.issn.1005-9490.2005.03.054

2005-01-01

Abstract:This paper theoretically analyzes a deficiency of the existing scheme, and proposes a distributed multi-hop certification authority scheme for mobile Ad Hoc networks. In our design, we distribute the certification authority functions through a threshold secret sharing mechanism, in which each node holds a secret share and multiple nodes jointly provide complete services. Certification authority is not limited in a local neighborhood but can be completed within multi-hop location. In addition, we replace broadcast by multicast to improve system performance and reduce communication overhead. This paper resolves some technical problems of ubiquitous certification authority services, and presents a wieldy multi-hop certification authority algorithm. Simulation results confirm the availability and effectiveness of our design.

Xuezhi, Tan,Shaochuan, Wu,Shilou, Jia

2005-01-01

Abstract:This paper theoretically analyzes a deficiency of the existing scheme, and proposes a distributed multi-hop certification authority scheme for mobile Ad Hoc networks. In our design, we distribute the certification authority functions through a threshold secret sharing mechanism, in which each node holds a secret share and multiple nodes jointly provide complete services. Certification authority is not limited in a local neighborhood but can be completed within multi-hop location. In addition, we replace broadcast by multicast to improve system performance and reduce communication overhead. This paper resolves some technical problems of ubiquitous certification authority services, and presents a wieldy multi-hop certification authority algorithm. Simulation results confirm the availability and effectiveness of our design.

Dahai Xu,Jeffrey Dwoskin,Jianwei Huang,Tian Lan,Ruby Lee,Mung Chiang

DOI: https://doi.org/10.1007/978-3-642-14849-1_23

2011-01-01

Abstract:Secure communications in wireless ad hoc networks require setting up end-to-end secret keys for communicating node pairs. It is widely believed that although being more complex, a probabilistic key predistribution scheme is much more resilient against node capture than a deterministic one in lightweight wireless ad hoc networks. Supported by the surprisingly large successful attack probabilities (SAPs) computed in this chapter, we show that the probabilistic approaches have only limited performance advantages over deterministic ones. We first consider a static network scenario as originally considered in the seminal paper by Eschenauer and Gligor [9], where any node capture happens after the establishment of all pair-wise links. In this scenario, we show that the deterministic approach can achieve a performance as good as the probabilistic one. In a mobile network scenario, however, the probabilistic key management as described in [9] can lead to a SAP of one order of magnitude larger than the one in a static network due to node fabrication attacks.The above analysis motivates us to propose two low-cost secure-architecture-based techniques to improve the security against such attacks. Our new architectures, specifically targeted at the sensor-node platform, protect long-term keys using a root of trust embedded in the hardware System-on-a-Chip (SoC). This prevents an adversary from extracting these protected long-term keys from a captured node to fabricate new nodes. The extensive simulation results show that the proposed architecture can significantly decrease the SAP and increase the security level of key management for mobile ad hoc networks.Finally, we develop an analytical framework for the on-demand key establishment approach. We propose a novel security metric, the REM resilience vector, to quantify the resilience of any key establishment schemes against Revealing, Erasure, and Modification (REM) attacks. Our analysis shows that previous key establishment schemes are vulnerable under REM attacks. Relying on the new security metric, we prove a universal bound on achievable REM resilience vectors for any on-demand key establishment scheme. This bound that characterizes the optimal security performance analytically is shown to be tight, as we propose a REM-resilient key establishment scheme which achieves any vector within this bound. In addition, we develop a class of low-complexity key establishment schemes which achieve nearly optimal REM attack resilience.

Renuka A.,K. C. Shet

DOI: https://doi.org/10.48550/arXiv.0910.0227

2009-10-01

Cryptography and Security

Abstract:Mobile Ad-hoc Network (MANET) is a collection of autonomous nodes or terminals which communicate with each other by forming a multi-hop radio network and maintaining connectivity in a decentralized manner. The conventional security solutions to provide key management through accessing trusted authorities or centralized servers are infeasible for this new environment since mobile ad hoc networks are characterized by the absence of any infrastructure, frequent mobility, and wireless links. We propose a hierarchical group key management scheme that is hierarchical and fully distributed with no central authority and uses a simple rekeying procedure which is suitable for large and high mobility mobile ad hoc networks. The rekeying procedure requires only one round in our scheme and Chinese Remainder Theorem Diffie Hellman Group Diffie Hellmann and Burmester and Desmedt it is a constant 3 whereas in other schemes such as Distributed Logical Key Hierarchy and Distributed One Way Function Trees, it depends on the number of members. We reduce the energy consumption during communication of the keying materials by reducing the number of bits in the rekeying message. We show through analysis and simulations that our scheme has less computation, communication and energy consumption compared to the existing schemes.

Guo Wei,Xiong Zhong-wei,Li Zhi-tang

DOI: https://doi.org/10.1007/bf02828634

2005-01-01

Wuhan University Journal of Natural Sciences

Abstract:A complex threshold key management framework has been proposed, which can address the challenges posed by the unique nature of Ad hoc network. Depending on the cooperation of the controller and participation nodes, this scheme should be efficient in the operation environmental alteration and tolerant faults of node, which take the advantages of the benefits of both key management approaches and alleviate their limitations. For the cooperation of the controller and participation nodes, a (t,n) threshold Elliptic curve sign-encryption scheme with the specified receiver also has been proposed. Using this threshold signencryption scheme, the key management distributes the trust between a controller and a set of participation nodes.

Lina Zhu,Yi Zhang,Li Feng

DOI: https://doi.org/10.1109/iita.2008.444

2009-01-01

Journal of Networks

Abstract:Key management is important to security of mobile ad hoc network (MANET). Based on the (t, n) threshold cryptography, this paper introduced mobile agent to exchange private key and network topological information with nodes in the network. This method cannot only reduce the network overload, but also improve the service velocity and success ratio of authentication. Any t nodes in the network sized n can cooperate to perform an authentication upon a new node wanting to join the network. Carrying private key and some state variables such as survival time, mobile agent navigated in the network according to visits-balance policy, namely, node with the least visits would be first visited by mobile agent. Experimental results show that the mobile agent performs very well for improving the success ratio of authentication.

Ting ZHENG,Xingrong SHI,Pingbo YUAN

DOI: https://doi.org/10.3969/j.issn.1000-3428.2006.14.053

2006-01-01

Abstract:A secure solution scheme based on certificates issued by nodes themselves has been proposed for mobile ad hoc networks (MANETs). The certificate hunter algorithm which the scheme uses can only assure to obtain a certificate link in probability. It also demands that nodes have good storage and computing capability, and are short of certificate management. Combining the idea of issuing certificates nodes themselves and certificate link, this paper proposes a new security solution scheme of MANETs, which enhances the security from improving certificate management to obtain the verifiable public key of destination node, proposing mutual entity authentication based on challenge-signature and securing communication.

ZHU Yunge,SHI Jianjun,FAN Lei,LI Jianhua

DOI: https://doi.org/10.3969/j.issn.1000-3428.2006.04.058

2006-01-01

Abstract:The paper proposes a group key agreement and management scheme for wireless Ad Hoc networks on the basis of the concept of CDS.The process of key agreement doesn’t demand any specific topology or previous shared information between nodes.The structure of key agreement can be maintained easily.Analysis shows that the scheme provides more reliable and quick communication,decrease the communication delay,produce better performance.And this scheme prevents the malicious attack raised by some dominators together.The scheme is suitable for Ad Hoc networks of any size.

王松,俞能海,郝卓

DOI: https://doi.org/10.3969/j.issn.1009-3443.2009.03.005

2009-01-01

Abstract:To reduce the processing delay for sub-key distribution and prevent attack from the compromised users and the leaking of the sub-keys to new users,based on the characteristics of ad hoc space network,a novel scheme DPSKC for key management in ad hoc space network was proposed.Based on elliptic curve cryptography,the parallel sub-key computing technology and packet transmission for distributed environment were designed.The former technology reduced the processing delay for sub-key distribution,and the latter prevented the attack from compromised users and the leaking of the sub-keys to new user.The new scheme is secure and performs well in the sub-key distribution delay,the computation and memory consumption.