期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

移动IPv6网络安全接入认证方案 被引量:3

Secure Access Authentication Scheme in Mobile IPv6 Networks
下载PDF
导出
摘要 对于移动IPv6网络,身份认证是网络安全的关键问题之一。针对移动IPv6网络的接入认证,提出了一种基于移动互联网双向认证方案。在移动切换过程中的接入认证和家乡注册,采用对家乡注册消息进行基于双私钥签名的方式,实现了家乡代理和移动节点分别对注册消息的签名,实现了接入认证与家乡注册的并发执行,移动用户和接入网络的一次交互实现了用户和接入域的有效双向认证。理论分析和数据结果表明,方案的认证总延时和切换延时要优于传统方法,有效地降低了系统认证的延时。安全性分析表明,框架中的基于双私钥的CPK方案满足双向接入认证安全,有效地解决了密钥托管问题。 To Mobile IPv6 networks, identify authentication is crucial issues of the network security. This paper proposed a secure identify authentication scheme, which considers inters domain reputation relationship between mobile node home domain and the access domain in the pre-handoff procedure and realizes effective mutual authentication between mobile node(MN) and the access domain. Authentication can be accomplished by double private key, HA and MN signing the home registration messages respectively. The access authentication can be accomplished in the visited net- work instead of the home network, and the handover procedure integrating authentication only needs one round trip. Theoretical analysis and numerical results show that proposed scheme is more effective in reducing total authentication and handoff delay and the signaling overhead than relative schemes. Based on the security of CPK algorithm and IBS,we prove the access authentication and home registration process handover latency of ours is better than that of the existing solutions and our solution satisfies mutual authentication security, resolves the key escrow efficiently.
作者 张志 崔国华
机构地区 华中科技大学计算机科学与技术学院 武汉职业技术学院计算机技术与软件工程学院
出处 《计算机科学》 CSCD 北大核心 2009年第12期26-31,共6页 Computer Science
基金 国家自然科学基金项目(60703048) 湖北省自然科学基金项目(2007ABA313)资助
关键词 移动IPV6 接入认证 切换性能 组合公钥 基于身份签名 Mobile IPv6, Access authentication, Handover performance, Combined public-key, Identity-based signature
分类号 TP309 [自动化与计算机技术—计算机系统结构]
  • 相关文献

参考文献15

  • 1Kim C, Kim Y S, Huh E N, et al. Performance improvement in mobile IPv6 using AAA and fast handoff[C]//Proceedings of the International Conference on Computational Science and It's Applications ( ICCSA' 04). LNCS 3043. Heidelberg: Springer- Verlag, 2004 : 738-745.
  • 2Gergiades M, Akhtar N, Politis C, et al. AAA context transfer for seamless and secure multimedia services over All IP infrastruetures[C]//Proeeedings of the 5th European Wireless Conference (EW'04). Barcelona,2004:442-448.
  • 3Le F, Patil B, Perkins C E, et al. Diameter mobile IPv6 application. Internet IETF Draft (working in progress).
  • 4Engelstad P, Haslestad T, Paint F. Authenticated access for IPv6 supported mobility[C]//Proceedings of the IEEE International Symposium on Computers and Communication (ISCC'03). Kemer-Antalya, 2003 : 569-575.
  • 5田野,张玉军,刘莹,李忠诚.移动IPv6网络基于身份签名的快速认证方法[J].软件学报,2006,17(9):1980-1988. 被引量:12
  • 6田野,张玉军,张瀚文,李忠诚.移动IPv6网络基于身份的层次化接入认证机制[J].计算机学报,2007,30(6):905-915. 被引量:16
  • 7Katz J,Wang N. Efficiency Improvements for Signature Scheme with Tight Security Reductions [C]//ACM-CCS' 2003. Washington, DC, USA: ACM, 2003. 155-164.
  • 8南相浩.CPK标识认证[M].北京:国防工业出版社,2006.186-210.
  • 9Boneh D, Lynn B, Shacham H. Short Signatures from the Weil Pairing[C]//Advance in Cryptology-ASIACRYPT 2001, LNCS 2248. Gold Coast, Australia, Springer Verlag. 2001: 213-229.
  • 10Soliman H,Castelluccia C, Malki K E, et al. Hierarchical Mobile IPv6 mobility management (HMIPv6). IETF Interact Draft (working in progress) ,2003.

二级参考文献39

  • 1田野,张玉军,刘莹,李忠诚.移动IPv6网络基于身份签名的快速认证方法[J].软件学报,2006,17(9):1980-1988. 被引量:12
  • 2Johnson D, Perkins C, Arkko J. Mobility support in IPv6. IETF RFC 3775, 2004.
  • 3Koodli R. Fast handovers for mobile IPv6. IETF RFC 4068, 2005.
  • 4Le F, Patil B, Perkins CE, Faccin S. Diameter mobile IPv6 application. Internet IETF Draft, draft-le-aaa-diameter-mobileipv6-04,2004.
  • 5Pack S, Choi Y. Pre-Authenticated fast handoff in a public wireless LAN based on IEEE 802.1x model. In: Proc. of the IFIP TC6/WG6.8 Working Conf. on Personal Wireless Communications 2002.
  • 6Kim C, Kim YS, Huh EN, Mun Y. Performance improvement in mobile IPv6 using AAA and fast handoff. In: Proc. of the ICCSA 2004. LNCS 3043, Springer-Verlag, 2004. 738-745.
  • 7Eronen P, Hiller T, Zorn G. Diameter extensible authentication protocol (EAP) application. IETF RFC 4072, 2005.
  • 8Aboba B, Blunk L, Vollbrecht J, Carlson J, Levkowetz H. Extensible authentication protocol (EAP). RFC 3748, 2004.
  • 9Aboba B, Simon D. PPP EAP TLS authentication protocol. RFC 2716, 1999.
  • 10Palekar A, Simon D, Salowey J, Zhou H, Zorn G, Josefsson S. Protected EAP protocol (PEAP) version 2. Internet IETF Draft draft-josefsson-pppext-eap-tls-eap- 10, 2004.

共引文献52

同被引文献36

  • 1杨宇红,蔡海滨.基于路由器的动态口令身份认证系统[J].计算机工程与设计,2005,26(5):1316-1317. 被引量:5
  • 2蔡磊,陈越,王娜.DIAMETER协议和RADIUS协议的比较[J].微计算机信息,2006,22(05X):244-246. 被引量:6
  • 3李亚敏,李小鹏,吴果.身份认证的密钥交换算法[J].计算机工程,2006,32(12):171-172. 被引量:8
  • 4陈璐,王亚弟,韩继红.基于IPv6的网络安全体系结构研究[J].计算机工程与设计,2007,28(4):796-799. 被引量:9
  • 5Srivathsan S, Balakrishnan N, Iyengar S S. Scalability in Wireless Mesh Networks [M]. Guide to Wireless Mesh Networks, Computer Communications and Networks, 2009 : 325-347.
  • 6Sultana H P, Pounambal M, Krishna P V. A Fast Handover Scheme for Multieasting in IPv6 based Mobile Ad-hoe Networks [J]. Journal of Computer Science,2011,7(1) :90-94.
  • 7Johnson D, Perkins C, Arkko J. Mobility Support in IPv6 [S]. IETF, RFC 3775,2004.
  • 8Ren Kui, Lou Wen-jing, Zeng Kai, et al. Routing optimization security in mobile IPv6 [J]. Computer Networks, 2006,50: 2401- 2419.
  • 9Song Seh-wa, Choi H-K, Kim J-Y. A Secure and Lightweight Approach for Routing Optimization in Mobile IPv6 [J]. EURASIP Journal on Wireless Communications and Networking, 2009(7).
  • 10Kandikattu R, Jacob L. A Secure IPv6-based Urban Wireless Mesh Network (SUMNv6) [J]. Computer Communications, 2008,31 : 3707-3718.

引证文献3

二级引证文献4

计算机科学
2009年 第12期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部