摘要
为基于移动网络的业务通信双方-业务签约者和业务提供者之间建立一种端到端的相互信任关系,提出了一种新的基于移动网络的应用服务端到端认证机制。研究了移动网络业务通信的发展趋势和安全威胁,介绍了3GPP中的通用鉴权框架的认证机理,指出了它的不足,并且提出了改进方法。介绍了端到端认证机制的总体框架和协议流程,并对其安全性、通用性、灵活性进行了分析。给出了该认证机制的应用场景。
In this paper we proposed an end-to-end authentication mechanism for establishing a mutual trusted relationship between service subscriber and service provider in mobile network. We investigated the mainly security threats, improved GAA (Generic Authentication Architecture) in 3GPP (The 3^rd Generation Partnership Project), and described the end-to-end authentication architecture and the flow of the protocol. At last, the security generality and flexibility of the authentication mechanism were analyzed, and the application environments were gaven.
出处
《无线电工程》
2006年第10期10-13,共4页
Radio Engineering
基金
国家自然科学基金(60372093)
北京交通大学校基金项目(2004SM003)
