Security in Distributed and Networking Systems: Computer and Network Security, Vol. 1

Katrin Hoeper and Guang Gong
Department of Electrical and Computer Engineering,
University of Waterloo,
Waterloo, ON, N2L 3G1, Canada,
khoeper@engmail.uwaterloo.ca , ggong@calliope.uwaterloo.ca
In this chapter, we introduce two full functional identity-based authentication and key exchange (IDAKE) schemes for mobile ad hoc networks (MANETs). These are the first complete ID-based security solutions for MANETs that address the problems of key escrow and choosing suitable identity and public key formats, and introduce secure algorithms for system set up, initial key generation and distribution, pre-authentication among nodes, authenticated session key computations, key renewal and key revocation. Previous schemes only provided partial solutions and some issues have never been discussed in the context of MANETs before. We utilize some special features of IBC schemes, such as pre-shared secret keys from pairings and other efficient key management properties to design IDAKE schemes that meet the special constraints and requirements of MANETs. The schemes bootstrap the security in MANETs and enable the use of authentication, key exchange, and other security protocols in a variety of applications. We present a basic IDAKE scheme for MANETs in which a trusted third party (TTP) initializes all nodes before they join the network and a fully self-organized IDAKE scheme for MANETs that does not require any central TTP. Finally, we provide a security and performance discussion of the presented schemes.
The number of applications that involve wireless communications among mobile devices is rapidly growing. Many of these applications require wireless networks to be spontaneously formed by...