中文摘要：

为了增强Ad Hoc网络节点密钥的安全性,结合组合公钥密码体制,提出一种基于便携式可信平台模块（PTPM）的非对称预分配密钥管理应用方案.该方案通过私钥生成中心为节点预分配主密钥子集及基于时间获得密钥更新的方式,降低了Ad Hoc网络密钥管理中的通信开销;利用PTPM作为节点密钥管理的安全防护基础,保障了预分配密钥的安全性及节点本身的可信性.与同类方案相比,此方案能有效降低通信开销.原型系统实际测试结果表明,该方案为Ad Hoc网络提供了具有硬件支撑的快速密钥管理服务及简单的应用范例.

英文摘要：

An identity-based public key pre-distribution scheme was proposed by taking advantage of combined public key framework and portable trusted platform module （PTPM） to protect keys. To reduce the communication overhead in the process of Ad Hoc network key management, two methods were adopted, one was that private key generation （PKG） distributed a subset of master key for node, another one was that key could be updated by time changing. In the scheme, PTPM was a basic secure hardware to protect the pre-assigned key and the node. Compared with similar schemes, this scheme needed much less communication overhead to accomplish key update service. Experimental results of the prototype system show that the scheme can provide fast key management service with the secure support based on hardware for Ad Hoc network. Meanwhile, an application paradigm of the key management based on PTPM is showed in the paper.