In IPv6 based MANETs, the neighbor discovery enables nodes to self-configure and communicate with neighbor nodes through autoconfiguration. The Stateless address autoconfiguration (SLAAC) has proven to face several security issues. Even though the Secure Neighbor Discovery (SeND) uses Cryptographically Generated Addresses (CGA) to address these issues, it creates other concerns such as need for CA to authenticate hosts, exposure to CPU exhaustion attacks and high computational intensity. These issues are major concern for MANETs as it possesses limited bandwidth and processing power. The paper proposes empirically strong Light Weight Cryptographic Address Generation (LW-CGA) using entropy gathered from system states. Even the system users cannot monitor these system states; hence LW-CGA provides high security with minimal computational complexity and proves to be more suitable for MANETs. The LW-CGA and SeND are implemented and tested to study the performances. The evaluation shows that LW-CGA with good runtime throughput takes minimal address generation latency.

翻译：在基于IPv6的移动自组网中，邻居发现机制使节点能够通过自动配置实现自我配置并与邻居节点通信。无状态地址自动配置已被证明面临若干安全问题。尽管安全邻居发现协议使用加密生成地址来解决这些问题，但它又引发了其他问题，例如需要证书颁发机构对主机进行认证、易遭受CPU耗尽攻击以及计算强度高等。这些问题对资源受限的移动自组网而言是重大挑战，因其带宽和处理能力有限。本文提出了一种利用系统状态收集熵值的经验证强安全轻量级密码地址生成方法。即使系统用户也无法监控这些系统状态，因此LW-CGA能以最小计算复杂度提供高安全性，更适用于移动自组网。我们实现了LW-CGA和SeND并进行性能测试对比。评估结果表明，具有良好运行时吞吐量的LW-CGA可显著缩短地址生成延迟。