无线Mesh网络中隐私保护的认证和密钥交换研究

项目名称： 无线Mesh网络中隐私保护的认证和密钥交换研究

项目编号： No.61472121

项目类型： 面上项目

立项/批准年度： 2015

项目学科： 自动化技术、计算机技术

项目作者： 郑明辉

作者单位： 湖北民族大学

项目金额： 80万元

中文摘要： 认证与密钥交换是无线Mesh网络诸多安全课题中一个基础性科学问题，其功能是保障Mesh终端用户快速进行身份合法性验证，并与网络中的通信方建立一个保密信道。现有研究成果大都将重点放在其功能实现上，而忽略了依附在其上的一些潜在安全属性，如隐私保护、可问责性等。项目研究无线Mesh网络的形式化安全模型，将可证明安全理论与方法引入安全系统的设计与分析；探索隐私增强型直接匿名证明技术，实现用户远程身份验证与隐私保护；设计高效的两方安全计算技术实现通信双方的密钥交换；吸收同态密码学最新研究成果，提出完备同态数字签名方案，解决签名并行验证和安全数据风暴问题；利用密钥后期绑定技术实现系统的双向问责。设计高效且能平衡隐私保护和问责的认证与密钥交换协议，实现无线Mesh网络安全实验系统。 本项目对隐私保护和问责的实现技术进行创新，将丰富密码学基础理论，有利于提高无线Mesh网络认证和密钥交换的安全性和实用性。

中文关键词： 无线网络安全；可问责性；隐私保护；认证；密钥交换

英文摘要： The authentication and key exchange is a fundamental scientific issue in wireless mesh networks (WMNs), because it can provide security guarantee, which legitimate users anonymously authenticate them to connect to the network and an efficient key exchange protocol for protecting communications between a user and her connecting router. Most of the existing research focus on its functions to achieve, while ignore its dependence on the number of potential security attributes, such that privacy and accountability. In this project, we will research the formal security model of wireless mesh networks, and introduce the provable security theory and methods to design and analysis of secure system. We will explore the privacy enhanced direct anonymous attestation technology, which guarantee for remote user authentication and privacy protection, and design efficient two-party secure computing technology to achieving key exchange between user and router. At same time, we will present a full homomorphic digital signature scheme by absorbing the latest research of homomorphic cryptography, and use it to solve the problem of parallel verification and data storm, and use the late binding technology to achieving two-way accountability in secure system. At last, an efficient anonymous and accountable mutual authentication and key agreement protocol for WMNs will be presented. And a test system for security of WMNs is constructed. By innovating technology of privacy-preserving and accountability, respectively, the project will enrich the basic theory of cryptography, and help to improve the security and usability of authentication and key exchange in wireless Mesh networks.

英文关键词： wireless network security;Accountability;Privacy protection;Authentication;Key exchange