通信学报 ›› 2019, Vol. 40 ›› Issue (6): 138-147.doi: 10.11959/j.issn.1000-436x.2019128

• 学术论文 • 上一篇    

天地一体化网络无缝切换和跨域漫游场景下的安全认证增强方案

薛开平,周焕城,孟薇,李少华   

  1. 中国科学技术大学信息科学技术学院,安徽 合肥 230026
  • 修回日期:2019-03-17 出版日期:2019-06-01 发布日期:2019-07-04
  • 作者简介:薛开平(1980- ),男,江苏东台人,博士,中国科学技术大学副教授,主要研究方向为下一代网络体系结构与网络安全。|周焕城(1994- ),男,广东汕头人,中国科学技术大学硕士生,主要研究方向为网络安全与密码学。|孟薇(1993- ),女,安徽阜阳人,中国科学技术大学硕士生,主要研究方向为网络安全协议设计与分析。|李少华(1994- ),男,安徽蚌埠人,中国科学技术大学硕士生,主要研究方向为信息与系统安全。
  • 基金资助:
    国家重点研发计划基金资助项目(2016YFB0800301);国家自然科学基金面上项目资助项目(61379129);中国科学院青年创新促进会会员基金资助项目(2016394)

Secure authentication enhancement scheme for seamless handover and roaming in space information network

XUE Kaiping,ZHOU Huancheng,MENG Wei,LI Shaohua   

  1. School of Information Science and Technology,University of Science and Technology of China,Hefei 230026,China
  • Revised:2019-03-17 Online:2019-06-01 Published:2019-07-04
  • Supported by:
    The National Key Research and Development Plan of China(2016YFB0800301);The National Natural Science Foundation of China(61379129);Youth Innovation Promotion Association of Chinese Academy of Sciences(2016394)

摘要:

由多种异构网络融合而成的天地一体化网络受到了研究者的广泛关注,但是其由于拓扑复杂、用户规模庞大而面临诸多安全威胁,容易出现链路切换和用户跨域漫游的情况。针对天地一体化网络的特点,提出了一种适用于天地一体化网络无缝切换和跨域漫游场景下的安全认证增强方案,基于安全凭证(Token)与散列链的结合,实现了用户与拜访域的双向快速认证,同时支持用户在拜访域中的合理计费。此外,针对天地一体化网络中卫星接入点频繁切换问题,提出了2种无缝切换机制以确保用户通信的连续性。安全性分析结果表明,所提方案不仅满足跨域漫游所必备的安全特性,还能够实现用户在拜访域的合理计费。

关键词: 天地一体化网络, 漫游, 无缝切换, 安全认证, 计费

Abstract:

Space information network composed of a variety of heterogeneous networks is widely concerned.However,the space information network is facing more security threats and more likely to roam due to its complex topology and large user scale.Considering the characteristics of space information network,a secure authentication enhancement scheme for seamless handover and roaming in space information network was presented.The fast mutual authentication and reasonable accounting between the user and the visiting domain based on the combination of Token and Hash chain was achieved.In addition,two seamless handover mechanisms were proposed to ensure the continuity of user communication.Finally,security analysis indicates that the scheme can not only provide essential security properties,but also achieve reasonable accounting.

Key words: space information network, roaming, seamless handover, secure authentication, accounting

中图分类号: 

  • TP302