基于Hash链的高效组播源认证协议

doi:10.3969/j.issn.1000-0801.2010.10.017

电信科学 ›› 2010, Vol. 26 ›› Issue (10): 66-70.doi: 10.3969/j.issn.1000-0801.2010.10.017

基于Hash链的高效组播源认证协议

林庚¹,乔占西²,于昕³

¹ 北京科技大学信息工程学院北京100083
² 河南科技大学洛阳471003
³ 北京科技大学土木与环境工程学院北京100083

出版日期:2010-10-15 发布日期:2010-10-15
基金资助:
国家自然科学基金资助课题“认知无线电安全关键技术研究”

Effective Multicast Source Authentication Protocol Based on Hash-Chaining

Geng Lin¹,Zhanxi Qiao²,Xin Yu³

¹ School of Information Engineering，Science and Technology University of Beijing，Beijing 100083，China
² Henan Science ＆ Technology University，Luoyang 471003，China
³ School of Civil and Environment Engineering，Science and Technology University of Beijing，Beijing 100083，China

Online:2010-10-15 Published:2010-10-15

摘要/Abstract

摘要：

针对现有基于Hash链思想的组播源认证协议存在接收方认证延迟和抗丢包性弱的缺陷，提出一种基于Hash链的高效组播源认证协议。该协议结合了向前方数据包添加Hash值的方法，将链中发送的数据包签名，在接收方实现实时认证。通过合理选择目标包，增强协议抗丢包性。同时，采用在接收方添加变化阈值的方法，改进了接收方反馈子网丢包率方式，节约了网络带宽，减轻了发送方的计算开销。文中给出了具体的设计方案，与相关组播源认证协议比较，其具有实时认证、抗丢包鲁棒性、减轻网络负担和发送方计算开销的特点。

关键词: 组播安全, Hash链, 源认证, 抗抵赖性

Abstract:

To the main limitation that current multicast source authentication protocol based on the idea of Hash-chaining have authentication delay at the receivers and are not robust against packet losses，this paper presents an effective multicast source authentication protocol based on Hash-chaining. In this protocol，the Hash value is put into preceding packet，and the first sending packet is signed in Hash-chaining，performing authentication in real-time at receivers. Through selecting object packet in a reasonable manner，the ability of tolerating packet loss is improved. At the same time，through adding threshold of variety at receiver，it changes the feedback way of losing packet ratio at receivers in subnet so as to save bandwidth and alleviate computation overheads at sender. The design of new protocol is concretely presented in this paper. Through comparing with related multicast source authentication protocol，it has the following traits：performing authentication in real-time at receivers， tolerating packet loss，saving bandwidth and alleviating computation overheads at sender.

Key words: multicast security, Hash-chaining, source authentication, non-repudiation

林庚,乔占西,于昕. 基于Hash链的高效组播源认证协议[J]. 电信科学, 2010, 26(10): 66-70.

Geng Lin,Zhanxi Qiao,Xin Yu. Effective Multicast Source Authentication Protocol Based on Hash-Chaining[J]. Telecommunications Science, 2010, 26(10): 66-70.

图/表 4

图1

图2

图3

表1

参考文献 10

1	Xu Zhiming ， Wang Yu ， Zhu Jingguo . A reliable multicast routing protocol for high-speed mobile ad hoc networks：R-ODMRP. Journal of Software, 2010,5（1）： 20～27
2	Singh K ， Yadav R ， Shankar S . Adaptive multicast source authentication. In：2009 IEEE International Advance Computing Conference，IACC, Patiala India,March 2009
3	Obana S ， Kurosawa K . Bounds and combinatorial structure of （k，n）multi-receiver a-codes. Designs，Codes and Cryptography. 2001,22（1）： 47～63
4	Perrig A ， Canetti R ， Tygar J D ， et al. The TESLA broadcast authentication protocol. RSA CryptoBytes, 2002（5)
5	Ruiying D ， Song W . An improved scheme of μTESLA authentication based trusted computing platform. In：2008 International Conference on Wireless Communications, Jhalwa India,December 2008
6	Yacine C ， Abdelmadjid B ， Yoann H . RLH：receiver driven layered Hash-chaining for multicast data origin authentication. Computer Communications, 2005（28）： 726～740
7	Perrig A ， Canetti R ， Tygar J D ， et al. Efficient authentication and signing of multicast streams over lossy channels. In：Proceedings of the IEEE Computer Society Symposium on Research in Security and Privacy, Berkeley California USA, May 2000
8	Yacine C ， Abdelmadjid B ， Hatem B . H2A：hybrid hashchaining scheme for adaptive multicast source authentication of media-streaming. Computers ＆ Security, 2005（24）： 57～68
9	Younis M ， Farrag O . Tiered authentication of multicast traffic in wireless ad hoc networks. In：2009 IEEE Global Telecommunications Conference, Hawaii USA,Nov 2009.
10	Eltaief H ， Youssef H . MLCC：a new hash-chained mechanism for multicast source authentication. International Journal of Communication Systems, 2009,22（9）： 1069～1087

协议				性能
协议	发送方认证延迟	接收方认证延迟	抗丢包性	附加在一个数据包上的Hash值	接收方反馈信息情况
原始Hash链	m	无	无	1	无
EMSS（带冗余度）	无	m	较强	≤6	无
H₂A（带反馈，带冗余度）	无	m	强	依靠发送方反馈的网络状况决定（灵活）	固定周期返回数据
本文协议（带反馈，带冗余度）	m	无（无丢包时）	更强	依靠发送方反馈的网络状况决定（灵活）	不一定周期性返回数据，根据网络变化情况而定

基于Hash链的高效组播源认证协议

Effective Multicast Source Authentication Protocol Based on Hash-Chaining

在线阅读

PDF下载

可视化

摘要/Abstract

引用本文

使用本文

图/表 4

参考文献 10

相关文章 1

Metrics

推荐阅读 0