中文摘要：

针对以卫星网络为核心的空间信息网分析其安全隐患与安全目标,提出使用公钥证书机制作为其基本安全机制。根据空间信息网没有中心节点这一特点,给出了一种分布式证书撤销算法及其具体实现细节。该算法中任意节点可以对异常节点发起撤销指控,当指控量达到一定门限值时撤销异常节点的证书。网络中的节点只需维护两张表以标识全网节点证书状态,极大地减少了通信量。该算法可以防止被撤销节点发起有效指控,并且能够以很高的概率抵抗恶意节点的非法指控攻击。

英文摘要：

The increasing prominence of a space information network consisted of satellite networks and other grand stations is stimulating greater interest in developing adequate security mechanism for this newborn hybrid network.Security risks in the space information network and the security goals to be achieved are analyzed,and the public key cryptography is proposed as the basis of security architecture.The issue of certificate revocation in this type of network is a challenge problem because there are no central nodes in it and no on-line accesses to trusted authorities distributed on the ground.A distributed certificate revocation algorithm is proposed for the space information network.In this scheme,any node within the network is allowed to accuse the abnormal behaviors of entities and the certificate of the node will be revoked when its revocation quotient reaches its threshold.The algorithm can prevent effective accusations made by revoked nodes and resist illegal accusation attacks of malicious nodes at a high probability.