|
|||||
|
|
| IEEE 802.16规范中的安全机制 | |
| 引用本文: | 赵志飞,彭志威,杨波.IEEE 802.16规范中的安全机制[J].电子科技,2005(5):9-12. |
| 作者姓名: | 赵志飞 彭志威 杨波 |
| 作者单位: | 1. 西安电子科技大学,通信工程学院,陕西,西安,710071;中兴通讯股份有限公司,技术中心研究部,广东,深圳,518057 2. 中兴通讯股份有限公司,技术中心研究部,广东,深圳,518057 3. 西安电子科技大学,通信工程学院,陕西,西安,710071 |
| 基金项目: | 国家高技术研究发展计划(863计划) |
| 摘 要: | 无线城域网(WMAN)面临着各种安全威胁,其规范IEEE 802.16中定义了保密子层实现认证、密钥协商与数据保密.早期规范中的认证与密钥管理协议为保密密钥管理(PKM),数据保密机制包含基于DES-CBC和AES-CCM的两个解决方案.PKM协议存在单向认证、PKI部署困难、无法实现基于用户的认证、缺乏组播密钥协商等缺陷.DES-CBC加密方案也有算法脆弱性、缺乏完整性保护、无抗重放保护等不足.最新的移动性规范IEEE802.16e中引入了灵活的EAP认证框架,消除旧的PMK协议的缺陷,并可满足移动性带来的新安全需求. |
| 关 键 词: | 安全机制 |
| 修稿时间: | 2004年12月13 |
Security Mechanisms in IEEE 802.16 |
|
| Zhao Zhifei,Peng Zhiwei,Yang Bo.Security Mechanisms in IEEE 802.16[J].Electronic Science and Technology,2005(5):9-12. | |
| Authors: | Zhao Zhifei Peng Zhiwei Yang Bo |
| Abstract: | Wireless Metropolitan Area Network (WMAN) is faced with some security risks. Privacy sub-layer is defined in IEEE 802.16 to achieve identity authentication, key management and data protection. In earlier version, authentication and key management protocol is called Privacy Key Management (PKM); and data protection protocols include two solutions based on DES-CBC and AES-CCM. However, there are some flaws in PKM protocol, e.g. one-way authentication, PKI employment difficulty, lack of authentication scheme based on subscriber, having no group key management, etc. DES-CBC based data protection solution also has some drawbacks such as algorithm vulnerability, running short of integrity protection and replay attack prevention. In the updated version 802.16e, EAP (Extensible Authentication Protocol) authentication scheme is introduced for its flexibility. EAP framework can eliminate shortcomings of PKM and meets new requirements of mobility. |
| Keywords: | IEEE 802 16 PKM |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! | |