摘要
基于超级用户身份识别模块(SIM)卡的增强型安全功能,以及终端、云、端云协同3个方面的安全需求,结合区块链、雾计算、轻量认证等技术,设计了适配于5G大规模物联网场景下的安全高效且去中心化的端云鉴权认证机制。该机制以端云联动、主动立体防御为核心实现了终端应用全生命周期的安全防护,构建起云、端、卡协同运作的安全体系,为5G+业务安全赋能。
Based on the enhanced security function of the super subscriber identity module(SIM)card,and the security requirements of termi⁃nal,cloud,and terminal cloud collaboration,combined with technologies such as blockchain technology,fog computing,and lightweight au⁃thentication,a secure,efficient,and decentralized end cloud authentication mechanism suitable for 5G large-scale Internet of Things sce⁃narios is designed.The mechanism takes end-cloud linkage and active three-dimensional defense as the core to realize the security protec⁃tion of the whole life cycle of the terminal application,and builds a security system of collaborative operation of cloud,end,and card,which prompts the security of 5G business.
作者
李佩源
刘建伟
LI Peiyuan;LIU Jianwei(Beihang University,Beijing 100191,China)
出处
《中兴通讯技术》
2023年第1期13-19,共7页
ZTE Technology Journal
基金
国家重点研发计划(2021YFB2700200)
国家自然科学基金(U21B2021、61972018、61932014)。
关键词
端云安全
超级SIM
访问控制
隐私保护
终端安全
end-cloud security
super SIM
access control
privacy protection
terminal security
