基于信任度计算的三阈值控制Ad Hoc网络节点撤销机制

doi:10.3969/j.issn.0372-2112.2015.08.018

电子学报 ›› 2015, Vol. 43 ›› Issue (8): 1589-1597.DOI: 10.3969/j.issn.0372-2112.2015.08.018

基于信任度计算的三阈值控制Ad Hoc网络节点撤销机制

郭萍^1,2, 周未³, 成亚萍^1,2

1. 南京信息工程大学江苏省网络监控中心, 江苏南京 210044;
2. 南京信息工程大学计算机与软件学院, 江苏南京 210044;
3. 南京理工大学计算机科学与工程学院, 江苏南京 210094

收稿日期:2013-02-28 修回日期:2014-09-25 出版日期:2015-08-25
- 作者简介:
- 郭萍 女,1973年生,山东烟台人.分别于1997年、2005年获兰州大学学士及硕士学位,2012年获南京理工大学博士学位.现为南京信息工程大学计算机与软件学院讲师,研究方向为信息安全、无线网络认证及密钥管理、信任系统. E-mail:guoping@nuist.edu.cn 周未 男,1979年生,江苏南京人.分别于2002年、2005年获解放军理工大学学士及硕士学位.现为南京理工大学计算机科学与工程学院博士生,研究方向为信息安全、赛博空间安全. E-mail:zhou_ziheng@126.com 成亚萍 女,1968年生,山西太原人.于1991年获南京理工大学学士学位,2006年南京信息工程大学硕士学位.现为南京信息工程大学计算机与软件学院副教授,研究方向为信息安全、信息隐藏及数据挖掘.
- 基金资助:
- 国家自然科学基金 (No.61272421); 中国气象局 (No.[2014]MC16); 江苏高校优势学科建设工程资助

Trust Calculation-Based Triple Thresholds Controlling Node Revocation in Ad Hoc Networks

GUO Ping^1,2, ZHOU Wei³, CHENG Ya-ping^1,2

1. Jiangsu Engineering Center of Network Monitoring, Nanjing University of Information Science & Technology, Nanjing, Jiangsu 210044, China;
2. School of Computer & Software, Nanjing University of Information Science & Technology, Nanjing, Jiangsu 210044, China;
3. College of Computer Science & Engineering, Nanjing University of Science & Technology, Nanjing, Jiangsu 210094, China

Received:2013-02-28 Revised:2014-09-25 Online:2015-08-25 Published:2015-08-25

摘要/Abstract

摘要：

为解决在资源受限且拓扑结构多变的Ad Hoc网络中对节点状态的量化控制,提出一种准确计算节点信任度值、三阈值控制的节点撤销机制.基于投诉机制的阈值用于快速将可疑节点挂起;基于信任度计算的阈值用于最终将恶意节点撤销;基于预警的阈值用于防止恶意节点短期内发起对某合法节点的连续错误投诉.分析及仿真表明:所提方案避免根据投诉数目而撤销节点的武断性,三阈值的采用保证了对潜在恶意节点的快速反应、信任度可量化及准确撤销,且能防止恶意节点对合法节点合谋投诉而造成的误撤销.

关键词: Ad Hoc网络, 信任度计算, 三阈值控制, 节点撤销

Abstract:

In order to solve the problem of how to evaluate the trusted degree of the nodes in the resource-constrained and topology-changed Ad Hoc networks, a scheme for evaluation of Ad Hoc nodes based on trust degree calculation and triple thresholds control has been put forward, improving the previous literature on the node trust evaluation mechanism.The accusation-based threshold is adopted to hang on a suspect node rapidly.The trust degree calculation-based threshold is used to revoke a node only when its trust value has reached the threshold value preseted according to safety requirements.The warning-based threshold is set to limit a potentially suspect node to launch a series of continuous malicious accusations to a legitimate node.Analysis and simulations show that the proposed scheme overcomes node revocation arbitrarily in the previous schemes in which node revocation is based on the number of accusations.Triple thresholds ensure a rapid response to malicious nodes, quantification of node trust and more accurate revocation of malicious nodes;moreover, it prevents illegal nodes from accusing legitimate nodes in collusion and then avoids a wrong revocation.

Key words: Ad Hoc networks, trust degree calculation, triple thresholds control, node revocation

中图分类号:

TP309

郭萍, 周未, 成亚萍. 基于信任度计算的三阈值控制Ad Hoc网络节点撤销机制[J]. 电子学报, 2015, 43(8): 1589-1597.

GUO Ping, ZHOU Wei, CHENG Ya-ping. Trust Calculation-Based Triple Thresholds Controlling Node Revocation in Ad Hoc Networks[J]. Acta Electronica Sinica, 2015, 43(8): 1589-1597.

参考文献

[1] Deng H M,Mukherjee A,Agrawal D P.Threshold and identity-based key management and authentication for wireless Ad Hoc networks[A].Proceedings of the International Conference on Information Technology:Coding Computing[C].New York,USA:IEEE,2004.107-111.
[2] Liu W,Nishiyama H,Ansari N,et al.A study on certificate revocation in mobile Ad Hoc networks[A].Proceedings of IEEE International Conference on Communications[C].New York,USA:IEEE,2011.1-5.
[3] Luo H,Kong J,Zerfos P,et al.URSA:ubiquitous and robust access control for mobile Ad Hoc networks[J].IEEE Transactions on Networking,2004,12(6):1049-1063.
[4] 谭良,陈菊,周明天.可信终端动态运行环境的可信证据收集机制[J].电子学报,2013,41(1):77-86. Tan L,Chen J,Zhou M T.Trustworthiness evidence collection mechanism of running dynamic environment of trusted terminal[J].Acta Electronica Sinica,2013,41(1):77-86.(in Chinese)
[5] Ganan C,Mata D J,Munoz J L.A modeling of certificate revocation and its application to synthesis of revocation traces[J].IEEE Transactions on Information Forensics and Security,2012,7(6):1673-1686.
[6] Wei L,Hiroki N,Ansari N,et al.Cluster-based certificate revocation with vindication capability for mobile Ad Hoc networks[J].IEEE Transactions on Parallel and Distributed Systems,2013,24(2):239-249.
[7] Pushpalakshmi R,Kumar A V.A secure dominating set based routing and key management scheme in mobile Ad Hoc networks[J].Wseas Transactions on Communications,2011,10(10):297-308.
[8] Dong X L,Wang L H,Cao Z F.New public key cryptosystems with lite certification authority[DB/OL].http://ePrint.iacr.org/2006/154,2013-03-16.
[9] 张学军,王玉,王锁萍,等.基于循环移位的轻量型相互认证协议研究[J].电子学报,2012,40(11):2270-2276. Zhang X J,Wang Y,Wang S P,et al.Research on the cyclic shift lightweight mutual authentication protocol[J].Acta Electronica Sinica,2012,40(11):2270-2276.(in Chinese)
[10] 孙屹,孟晨.OPNET通信仿真开发手册[M].北京:国防科技出版社,2005.216-256.
[11] 潘勇,谢磊,徐勇军.一种传感器网络中选择性转发攻击的防御方法[P].中国专利:200810062842,2008-12-16.
[12] RFC3651,Ad Hoc on-demand distance vector (AODV) routing[S].
[13] Martinovic I,Zdarsky F A,Wilhele M,et al.Wireless client puzzles in IEEE802.11 networks:security by wireless[A].Proceedings of the 1st ACM Conference on Wireless Network Security[C].Pittsburgh,USA:ACM,2008.36-45.

[1]	陈丹, 刘卜华, 闫茂德, 李建东, 李长乐. MIMO Ad Hoc网络中基于正交阵列的拓扑未知多址接入协议[J]. 电子学报, 2016, 44(2): 308-318.
[2]	何林波, 蒋定德, 仲维佳. 一种基于能效与频效的路由优化算法[J]. 电子学报, 2016, 44(10): 2314-2322.
[3]	徐宁, 张沪寅, 王晶, 徐方, 汪志勇. 认知Ad Hoc网络中基于信道相似度的分簇算法研究[J]. 电子学报, 2016, 44(10): 2323-2329.
[4]	孙晓惠, 尹长川. 基于双变量泊松点过程的无线Ad Hoc网络的保密广播传输容量分析[J]. 电子学报, 2014, 42(9): 1847-1851.
[5]	孙君;朱洪波. Ad Hoc网络中基于距离的机会频谱接入方案[J]. 电子学报, 2011, 39(7): 1679-1682.
[6]	刘干;朱光喜. 可任意阶扩展的认知无线Ad Hoc 网络频谱共享模型[J]. 电子学报, 2011, 39(12): 2784-2789.
[7]	陈怡;胡瑞敏;高戈. 面向动态Ad Hoc网络异构多播业务流最优资源控制策略[J]. 电子学报, 2011, 39(11): 2583-2588.
[8]	张琰;盛敏;李建东;田野;姚俊良;唐迪. 一种适用于多跳Ad Hoc网络的增强型协作多址接入协议[J]. 电子学报, 2011, 39(1): 224-232.
[9]	于尧;郭磊;王兴伟;李平平. 一种适合于分级Ad Hoc网络的实时风险评估安全策略[J]. 电子学报, 2011, 39(1): 108-113.
[10]	马柯;俞能海;杨福荣. EASA：一种分簇Ad Hoc网络高效自适应TDMA时隙分配算法[J]. 电子学报, 2010, 38(7): 1678-1682.
[11]	吴克军;于全;田艳霞. 一种位置信息辅助的Ad Hoc网络按需距离矢量路由协议[J]. 电子学报, 2010, 38(4): 983-0988.
[12]	李娟;饶妮妮;廖瑞华;王炜华. 基于改进粒子群算法的Ad Hoc网络移动模型研究[J]. 电子学报, 2010, 38(1): 222-227.
[13]	田野, 盛敏, 李建东, 段鹏. 一维Ad Hoc网络二连通性研究[J]. 电子学报, 2008, 36(4): 715-719.
[14]	盛敏;史琰;田野;李建东;周恩惠. 移动Ad Hoc网络的k连通性研究[J]. 电子学报, 2008, 36(10): 1857-1861.
[15]	王博, 任彦, 张思东, 张宏科. 一种适用于Ad Hoc K重组播网络的负载均衡路由算法[J]. 电子学报, 2007, 35(7): 1352-1356.

基于信任度计算的三阈值控制Ad Hoc网络节点撤销机制

Trust Calculation-Based Triple Thresholds Controlling Node Revocation in Ad Hoc Networks

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics