摘要
以3G和WLAN为代表的异构无线网络融合是下一代无线网络发展的必然趋势.安全融合是网络融合面临的主要挑战之一,如何融合不同接入网络的异构安全体系结构、统一用户管理是亟待解决的问题.针对3G与基于WAPI的WLAN之间的安全融合问题,提出了新的基于USIM的证书分发协议,给出了松耦合和紧耦合两种安全融合方案,统一了3G安全体系与WAPI的用户管理,实现了3G签约用户基于WAPI安全机制的网络接入以及身份隐私保护.利用CK模型分析了证书分发协议的身份认证和匿名性,结果表明该协议是可证明安全的.
Heterogeneous wireless network integration, typically 3G and WLAN integration, is an inevitable trend. Security is one of the major challenges which heterogeneous wireless network integration faces. How to integrate the vastly different security architectures used in each access network and unify user management is to he solved in urgent need. To achieve the security integration of 3G and WAPI based WLAN, a USIM based certificate distribution protocol is proposed. Two security integration schemes, i. e. , loosely coupled and tightly coupled, are presented, which unify user management of 3G security architecture and WAPI, and realize WAPI based network access for 3G subscribers and identity privacy protection. The entity authentica- tion and anonymity of the certificate distribution protocol is analyzed in CK model, and the results show that the protocol is provably secure.
出处
《计算机学报》
EI
CSCD
北大核心
2010年第9期1675-1685,共11页
Chinese Journal of Computers
基金
国家"八六三"高技术研究发展计划项目基金(2007AA01Z429)
国家自然科学基金(60633020
60702059
60872041)资助~~
关键词
异构网络
安全融合
WAPI
匿名性
紧耦合
松耦合
heterogeneous networks
security integration
WAPI
anonymity
tightly coupled
loosely coupled