期刊文献+

基于一次一密的5G馈线终端通信安全防护方法

Communication security protection method for 5G feeder terminals based on one-time pad
下载PDF
导出
摘要 针对5G通信环境中,馈线自动化(FA)终端之间对等通信容易受到非法干扰和窃听的问题,提出一种基于一次一密的馈线终端(FTU)通信安全防护方法,旨在提升FTU在5G环境下通信的安全性。首先,在FTU内集成加解密安全芯片,并通过预充注在加解密安全芯片内的密钥向安全服务移动引擎进行双向身份认证,安全服务平台向身份认证成功的FTU分发一定数量的根密钥;其次,加解密安全芯片采用基于改进Shamir的密钥扩散算法,将根密钥动态扩散生成新的会话密钥;最后,需要进行对等通信的FTU双方获得新的会话密钥,并使用SM4加密算法进行一次加密通信。试验结果表明,FTU每次加密通信都使用了不同的会话密钥和初始向量,使得加密结果不可预测。所提方法不仅提升了5G场景下FTU对等通信的安全性,并且相较于其他方法,所提方法在5G高速、大数据量的通信环境中具有较低的计算开销。 A communication security protection method is proposed for feeder terminal units(FTU)in 5G environment to address the vulnerability of peer-to-peer communication between feeder automation(FA)terminals to illegal interferences and eavesdropping.This method utilizes a one-time one-pad encryption and decryption mechanism to enhance the security of FTU communication.Firstly,an encryption and decryption security chip is integrated into FTU,enabling two-way identity authentication with the security service mobile engine using pre-loaded keys.Upon successful authentication,the security service platform distributes a set number of root keys to the authenticated FA.Secondly,an improved Shamir key diffusion algorithm is employed by the encryption and decryption security chip to dynamically diffuse these root keys and generate new session keys.Finally,both feeder terminals engaging in peer-to-peer communication obtain unique session keys to their corresponding encrypted communication instances using SM4 encryption algorithm.Experimental results demonstrate that distinct session keys and initial vectors are used in different pairs of communicating feeder terminals,ensuring unpredictable encryption outcomes.This proposed method not only enhances the security of peer-to-peer communication among feeder terminals in 5G scenarios,but also reduces the computational costs compared to other methods suitable for high-speed and large-volume communications in 5G environments.
作者 王录泽 刘增稷 周霞 张腾飞 WANG Luze;LIU Zengji;ZHOU Xia;ZHANG Tengfei(College of Automation&College of Artificial Intelligence,Nanjing University of Posts and Telecommunications,Nanjing 210023,China;Institute of Carbon Neutral Advanced Technology,Nanjing University of Posts and Telecommunications,Nanjing 210023,China)
出处 《综合智慧能源》 CAS 2024年第9期86-96,共11页 Integrated Intelligent Energy
基金 国家自然科学基金项目(62073173)。
关键词 配电自动化 馈线终端 一次一密 5G通信 通信安全 密钥扩散 智能电网 distribution automation feeder terminal one-time pad 5G communication communication security key diffusion smart grid
  • 相关文献

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部