基于区块链的工业互联网动态密钥管理张泽林王化群(南京邮电大学计算机学院南京210023)(zlzh_ang@163.com)DynamicKeyManagementofIndustrialInternetBasedonBlockchainZhangZelinandWangHuaqun(SchoolofComputerScience,NanjingUniversityofPostsandTelecommunications,Nanjing210023)n(n−1)n(n−1)AbstractAtpresent,thesecuritythreatofindustrialInternetdataisbecomingmoreandmoreserious.EffectivenetworktransmissionplaysakeyroleinthedatasecurityofindustrialInternet.InordertoeffectivelyadapttothestructureoftheindustrialInternetandachievesafeandreliablecommunication,akeymanagementschemebasedonblockchaindynamicnodesisproposed.Inindustrialcommunication,aneffectivesessionkeyneedstobeestablishedbetweenuntrustednodes,andthetraditionalkeyagreementisrealizedbyusingacentralnodeinthewayofmiddleman.However,Oncethecentralnodefails,thecommunicationofthewholecommunicationsystemwillfail.Whenthenumberofnodesissmall,thecentralnodeisusuallyusedtosetthekeyinadvance.Eachnodeneedstostorekeys,sothewholesystemneedstostorekeys.Oncethenodesneedtobeincreased,thekeysstoredinthewholesystemwillincreaseexponentially.Therefore,basedontheblockchain,weusepolynomialstoconstructcommunicationkeys,decentralizetogeneratesharedkeys,effectivelyresistthethreatofnodeaccesstothesystem,andensureeffectivegroupkeynegotiation.ThepropsosedschemehasfasterprocessingspeedthanthatoftraditionalPKI.Ifanynodelosesitskey,itcaneffectivelyrecovertheoriginalkeywiththehelpofothernodeinformation.Keywordsblockchain;industrialInternet;keymanagement;secretsharing;Katepromisesn(n−1)n(n−1)摘要目前,工业互联网数据面临的安全威胁日益严重,有效的网络传输对工业互联网的数据安全起到关键的作用.为了能有效适应工业互联网的结构,实现安全可靠的通信,提出一种基于区块链的动态节点的密钥管理方案.工业通信中,不信任的节点之间需要建立有效的会话密钥,并且传统的借助一个中心节点采用中间人方式实现密钥协商,但是一旦中心节点失效,则会导致整个通信系统的通信失败.而当节点数较少时,通常采用中心节点预先设置密钥的方式,每个节点均需存储个密钥,那么整个系统需要存储个密钥,一...
