基于移动IPv6的身份认证体系

Identity Authentication System Based on Mobile IPv6

随着移动通信的迅速发展,通信实体之间的身份认证日益成为研究的重点。IETF提出的移动IPv6中IPSec安全协议和RRP机制虽然能用于保护相关通信节点之间的通信信令,但在通信过程中IPSec安全协议和RRP机制却不能解决通信实体身份认证问题,本文对目前所提出的基于证书认证和基于身份认证两种认证方法进行分析比较,指出两种方法在认证上的优点和不足,最后针对具体应用提出了建议。

In the rapidly expanding mobile environment, authenticity of communicating entities is receiving increasing attention. In the mobile IPv6 defined by IETF, IPSec protocols and RRP mechanism are used to protect signaling between related communicating nodes. But, the realization of identity authentication has not been efficiently solved. In this paper, the advantages and disadvantages of the two authentication techniques：certificate- based authentication and identity - based authentication are analyzed and compared. Some suggestions for the practical application of algorithms are also put forward.