一种有效抗污染攻击的混合网络编码方案

doi:10.3969/j.issn.1671-1122.2019.05.009

信息网络安全 ›› 2019, Vol. 19 ›› Issue (5): 69-76.doi: 10.3969/j.issn.1671-1122.2019.05.009

一种有效抗污染攻击的混合网络编码方案

王雅旋, 林喜军, 曲海鹏()

中国海洋大学信息科学与工程学院,山东青岛 266100

收稿日期:2019-01-21 出版日期:2019-05-10 发布日期:2020-05-11
作者简介:
作者简介：王雅旋（1992—）,女,福建,硕士研究生,主要研究方向为密码学、信息安全;林喜军（1977—）,男,山东,副教授,博士,主要研究方向为密码学、信息安全;曲海鹏（1972—）,男,山东,副教授,博士,主要研究方向为密码学、信息安全。
基金资助:
国家自然科学基金[61827810];国家重点研发计划[2016YFB1001103]

An Effective Hybrid Network Coding Scheme Against Pollution Attacks

Yaxuan WANG, Xijun LIN, Haipeng QU()

College of Information Science and Engineering, Ocean University of China, Qingdao Shandong 266100, China

Received:2019-01-21 Online:2019-05-10 Published:2020-05-11

摘要/Abstract

摘要：

密码学研究者们使用同态签名或同态MAC方案来保障网络编码环境中消息的完整性。然而,随着数据量的增加,同态签名方案的计算开销越来越大;同态MAC方法虽然能够有效地节省计算开销,但是存在标签污染和代间污染问题。为了更有效地保障网络编码中消息的完整性,提高系统的性能,文章提出一种结合同态MAC方案和同态签名方案的混合网络编码方案,利用同态MAC方案为传输的数据包生成一个标签集合,然后对标签集合进行签名。在方案设计中引入了消息的代标识符,中间节点可以依据消息的代标识符对来自同一代消息的数据包进行网络编码。中间节点通过对签名和标签的双重验证来及时发现并丢弃受污染的数据包。经过安全分析,该方案实现了同时抵抗数据污染、标签污染和代间污染三种污染攻击的功能。

关键词: 网络编码, 标签污染, 代间污染, 同态MAC, 同态签名

Abstract:

Cryptographic researchers use homomorphic signatures or homomorphic MAC methods to ensure message integrity in network coding environments. However, with the increase of the amount of data, the homomorphic signature method has more and more overhead. Although the homomorphic MAC method can effectively reduce the overhead, there are tag pollution and intergenerational pollution problems. In order to more effectively guarantee the integrity of the message in the network coding and improve the system performance, this paper proposes a hybrid network coding scheme combining homomorphic MAC and homomorphic signature, and uses the homomorphic MAC method to generate a label set for the transmitted data packet. Then sign the tag collection. The generation identifier of the message is introduced in the scheme design, and the intermediate node can perform network coding on the data packet from the same generation message according to the generation identifier of the message. The intermediate node can discover and discard contaminated data packets in time through double verification of signatures and labels. Through the safety analysis, the scheme realizes the functions of resisting data pollution, tag pollution and intergenerational pollution.

Key words: network coding, tag pollution, intergenerational pollution, homomorphic MAC, homomorphic signature

中图分类号:

TP309

王雅旋, 林喜军, 曲海鹏. 一种有效抗污染攻击的混合网络编码方案[J]. 信息网络安全, 2019, 19(5): 69-76.

Yaxuan WANG, Xijun LIN, Haipeng QU. An Effective Hybrid Network Coding Scheme Against Pollution Attacks[J]. Netinfo Security, 2019, 19(5): 69-76.

图/表 4

参考文献 17

[1]	TAO Shaoguo, HUANG Jiaqing, YANG Zongkai, et al.A Survey of Network Coding Research[J]. Small Computer Systems, 2008, 29(4): 583-592.
	陶少国,黄佳庆,杨宗凯,等.网络编码研究综述[J].小型微型计算机系统,2008,29(4):583-592.
[2]	BOLLOBAS B.Graph Theory an Introductory Course[M]. New York: Springer-Verlag, 1979.
[3]	AHLSWEDE R, CAI Ning, YEUNG R, et al.Network Information Flow[J]. IEEE Transactions on Information Theory, 2000, 46(4): 1204-1216.
[4]	KOETTER R, MEDARD M.An Algebraic Approach to Network Coding[J]. IEEE/ACM Transactions on Networking, 2003, 11(5): 782-795.
[5]	LI S Y R, YEUNG R, CAI Ning. Linear Network Coding[J]. IEEE Transactions on Information Theory, 2003, 49(2): 371-381.
[6]	CAO Zhanghua, TANG Yuansheng.Overview of Secure Network Coding[J]. Journal of Computer Applications, 2010, 30(2): 499-505.
	曹张华,唐元生.安全网络编码综述[J].计算机应用,2010,30(2):499-505.
[7]	AGRAWAL S, BONEH D. Homomorphic MACs: MAC-Based Integrity for Network Coding[EB/OL]. , 2017-12-10.
[8]	CHENG Chi, JIANG Tao.A Novel Homomorphic Mac Scheme for Authentication in Network Coding[J]. IEEE Communications Letters, 2011, 15(11): 1228-1230.
[9]	LI Chen, LU Rongxing, LI Hui, et al.Comment on A Novel Homomorphic MAC Scheme for Authentication in Network Coding[J]. IEEE Communications Letters, 2014, 18(12): 2129-2130.
[10]	CHENG Chi, JIANG Tao.An Efficient Homomorphic MAC with Small Key Size for Authentication in Network Coding[J]. IEEE Transactions on Computers, 2013, 62(10): 2096-2100.
[11]	WANG Weijia, HU Lei.A Generic Homomorphic MAC Construction for Authentication in Network Coding[J]. Security and Communication Networks, 2014, 7(2): 429-433.
[12]	CHANG Jinyong, XUE Rui.A Generic Construction of Homomorphic MAC for Multi-file Transmission in Network Coding[J]. Journal of Communications, 2015, 10(1): 43-47.
[13]	ESFAHANI A, MANTAS G, RODRIGUEZ J.An Efficient Null Space-based Homomorphic MAC Scheme Against Tag Pollution Attacks in RLNC[J]. IEEE Communications Letters, 2016, 20(5): 918-921.
[14]	ESFAHANI A, MANTAS G, RODRIGUEZ J, et al.An Efficient Homomorphic MAC-based Scheme Against Data and Tag Pollution Attacks in Network Coding-enabled Wireless Networks[J]. International Journal of Information Security, 2017, 16(6): 627-639.
[15]	LIU Guangjun, WANG Bin.Secure Network Coding Against Intra/Inter-generation Pollution Attacks[J]. China Communications, 2013, 10(8): 100-110.
[16]	CANETTI R, GARAY J, ITKIS G, et al.Multicast Security: A Taxonomy and Some Efficient Constructions[C]//IEEE. Conference on Computer Communications, March 21-25, 1999, New York, USA. New York: IEEE, 1999: 708-716.
[17]	KATZ J, LINDELL Y.Introduction to Modern Cryptography: Principles and Protocols[M]. Boca Raton: Chapman and Hall/CRC, 2007.

方案分类	抗数据污染	抗标签污染	抗代间污染
本文方案	√	√	√
文献[14]方案	√	√	×
文献[7]方案	√	×	√

一种有效抗污染攻击的混合网络编码方案

An Effective Hybrid Network Coding Scheme Against Pollution Attacks

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

图/表 4

参考文献 17

相关文章 7

编辑推荐

Metrics

本文评价

[1]	俞惠芳, 高新哲. 多源网络编码同态环签名方案研究[J]. 信息网络安全, 2019, 19(2): 36-42.
[2]	马苗立, 张洪波, 丁卫颖. 基于字节级优化更新的云存储增量式网络编码方法研究[J]. 信息网络安全, 2018, 18(11): 18-26.
[3]	陈福臻, 程久军, 廖竞学, 邵剑雨. 基于网络编码的同态HASH抗污染攻击系统研究[J]. 信息网络安全, 2015, 15(6): 33-40.
[4]	齐峰, 马春光, 周永进, 苗俊峰. 一种基于网络编码的机会社会网络路由算法[J]. 信息网络安全, 2015, 15(2): 51-56.
[5]	. 信息论课程在网络安全与执法专业建设中的重要性研究[J]. , 2014, 14(11): 87-.
[6]	谢垂益;鲁向前;卿斯汉. 云存储系统的分区编码冗余方法研究[J]. , 2013, 13(6): 0-0.
[7]	肖亮;马春光;王九如;高训兵. 一种基于随机线性网络编码的机会网络路由协议[J]. , 2013, 13(3): 0-0.