| 基于IPSec的组播数据源认证设计方案 |
| |
| 引用本文: | 张春瑞,王开云.基于IPSec的组播数据源认证设计方案[J].计算机工程与设计,2006,27(10):1754-1756. |
| |
| 作者姓名: | 张春瑞 王开云 |
| |
| 作者单位: | 中国工程物理研究院,计算机应用研究所,四川,绵阳,621900;中国工程物理研究院,计算机应用研究所,四川,绵阳,621900 |
| |
| 基金项目: | 中国物理研究院科研项目 |
| |
| 摘 要: | 组播技术在面向组的应用中越来越多地使用,但是组播数据源认证问题却一直没有很好的解决方案.IPSec是解决IP层安全问题的协议,目前IPSec协议已经越来越多地用于组播应用中,在对IPSec的安全组播主机系统框架进行研究的基础上,提出了基于一次性签名的组播数据源认证方案,重点解决了组播数据源认证设计的困难,这个方案能够达到组播数据源认证的安全性与性能两个方面的要求,尤其在抗抵赖和计算量两个方面作了改进.
|
| 关 键 词: | IPSec协议 组播数据源认证 单向函数 一次性签名 抗抵赖 |
| 文章编号: | 1000-7024(2006)10-1754-03 |
| 收稿时间: | 2005-04-16 |
| 修稿时间: | 2005-04-16 |
Design scheme of IPsec-based multicast data origin authentication |
| |
| ZHANG Chun-rui,WANG Kai-yun.Design scheme of IPsec-based multicast data origin authentication[J].Computer Engineering and Design,2006,27(10):1754-1756. |
| |
| Authors: | ZHANG Chun-rui WANG Kai-yun |
| |
| Affiliation: | Institute of Computer Application, Chinese Academy of Engineering Physics, Mianyang 621900, China |
| |
| Abstract: | The multicast technology is an increasing application in many cases. However how to address the multicast data origin authentication, there is no good solution. The IPsec protocol is for solving IP layer security. It has been applied in many multicast applications now. Based on the studying IPSec-based host architecture for secure multicast, a one-time signature-based multicast data origin authentication scheme was presented. The difficulty in the designing the multicast data origin authentication was solved. This scheme can achieve the request on the security and performance of the multicast data origin authentication, and especially the improvement of non-repudiation and computational quantity. |
| |
| Keywords: | IPsec protocol multicast data origin authentication one-way function one-time signature non-repudiation |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
