一种AN逐跳认证模型的设计

在主动网中，授权用户具有了以往只有系统管理员才具有的网管权利，授权用户能够管理配置主动节点的资源。主动数据包中携带了能对网络节点资源进行访问的程序，它们在很大程度上可以对资源进行分配、修改等操作，所有这些都可能使网络受到恶意程序和有缺陷代码的攻击或影响，因此，主动网络的安全问题是其能够得以推广应用的关键。对AN主体或实体的有效认证是AN安全实施的前提保障。由于主动网络环境与传统网络环境的差异性，在主动网中对网络实体及网络主体进行认证将面临更多的挑战。在深入研究分析AN安全认证技术的基础上，设计实现了一个AN逐跳认证模型。

Design of hop-by-hop authentication model for AN

In AN, the authorized user has the management right of network which used to be possessed only by the system administrator, and can administrating and control the resources of the active nodes. The active packets with executable codes can access the resources of the nodes, and can allocate and modify the resources in most degree. All of these may bring the dangers from the malicious or defect codes.As a result,active networking(AN)Security is of critical importance to the success of active networking.The efficient authentication of principals or entities of AN is the foundation to implement security for AN. Since the differences between the active networks and passive networks, the authentication of principals or entities in active networks will meet more challenging. After the authentication technologies for AN are analyzed deeply, a hop-by-hop authentication model for AN is presented.