摘要
异构无线网络中互连的安全问题是当前研究的关注点,针对3G网络和WLAN(无线局域网)所构成的异构互连网络中认证协议的安全和效率问题,提出了一种基于离线计费方法的认证协议。该协议通过对WLAN服务网络身份进行验证,抵御了重定向攻击的行为;采用局部化重认证过程,减少了认证消息的传输延时,提高了认证协议的效率。仿真结果表明,该协议的平均消息传输延时相对于EAP-AKA协议缩短了大约一半。通过Canetti-Krawczyk(CK)安全模型对新协议进行了安全性证明,证明该协议具有SK-secure安全属性。
Security of heterogeneous wireless networks has attracted the attention of researchers. Considering security and efficiency problems on EAP-AKA protocol in the 3G-WLAN interworking networks, an authentication protocol based on a way of offfine billing was proposed. It verified the identity of WLAN access network to prevent the re-direction attack, and used the localized authentication mechanism to reduce the message transmission delay and improve the efficiency of reauthentication process. Simulation results show that the average message transmission delay of the proposed protocol is about half shorter than that of EAP-AKA. By analyzing the security of the proposed protocol with Canetti-Krawczyk (CK) model, it proves that the proposed protocol satisfy the definition of Session Key security defined in the CK model.
出处
《通信学报》
EI
CSCD
北大核心
2007年第11期21-29,共9页
Journal on Communications
基金
国家自然科学基金资助项目(60633020
60573036)
北京电子科技学院信息安全与保密重点实验室资助项目(KYKF200604)~~
