摘要
从以太网无源光网络(EPON)潜在隐患入手,分析窃听、拒绝服务、伪装及窃取服务等安全风险,提出一种基于ECC公钥数字证书的认证方案。同时,引进了基于CCM方式的数据认证加密方案,并在OMNeT环境中仿真该认证及加密方案,并与其它现有方案进行对比分析。从结果可知,该认证方案具有低延时特性,且满足不可否认性等安全性问题。
This paper firstly analyze various types of potential network structure targeted attacks in Ethemet passive optical network, EPON, such as passive monitoring,denial of service (DoS),masquerading, and theft of service (ToS).Basing on the analyzing results,an authentication scheme based on ECC public algorithm and CCM-AES additional authentication encryption method will be illustrated.And then relevant simulation re- suits are following.Ultimately, a comparison between this paper indicated authentication and encryption scheme and other works gives in order to measure the performance.From the comparison,the results demon- strate the efficiency of the indicated security schemes which also meet the security condition of non-renouncement.
出处
《光通信技术》
CSCD
北大核心
2013年第1期1-4,共4页
Optical Communication Technology
基金
法国学人徐光启项目:26223NK资助~~
