北京邮电大学学报

  • EI核心期刊

北京邮电大学学报 ›› 2023, Vol. 46 ›› Issue (4): 103-108.

• 研究报告 • 上一篇    下一篇

面向网络切片的无证书切换认证与密钥协商协议

吴玄,姬伟峰,翁江,李映岐,申秀雨   

  1. 空军工程大学 信息与导航学院
  • 收稿日期:2022-07-10 修回日期:2022-09-24 出版日期:2023-08-28 发布日期:2023-08-24
  • 通讯作者: 姬伟峰 E-mail:jiwf@yeah.net
  • 基金资助:
    国家自然科学基金项目

Certificateless Handover Authentication and Key Agreement Protocol for Network Slicing

WU Xuan, JI Weifeng, WENG Jiang, LI Yingqi, SHEN Xiuyu   

  1. School of Information and Navigation, Air Force Engineering University
  • Received:2022-07-10 Revised:2022-09-24 Online:2023-08-28 Published:2023-08-24

摘要: 为解决网络切片片间切换协议匿名性较差认证过程复杂和通用性较低等问题提出了一种基于无证书的高效通用安全切换认证与密钥协商协议基于无证书机制的密钥协商协议能够解决传统公钥基础设施的证书存储与密钥管理等问题在保证安全性前提下,能够有效地提高切换认证效率所提协议通过引入用户伪身份和切片身份标识符实现对用户和网络切片的隐私保护;针对不同服务类型的网络切片在用户与切片服务提供商之间引入边缘控制器辅助片间切换过程,确保合法用户在切换过程中实现快速通用的身份认证仿真实验表明所提协议在提高片间切换认证效率的同时实现了安全通用的切换过程

关键词: 网络切片 , 切换认证 , 认证密钥协商 , 无证书

Abstract: In order to solve the problems of poor anonymity, complex authentication process and low generality of handover protocol between network slices, an efficient universal secure handover authentication and key negotiation protocol based on no certificate is proposed. The key negotiation protocol based on certificateless mechanism can solve the problems of certificate storage and key management in traditional public key infrastructure, and can effectively improve the efficiency of handover authentication under the premise of ensuring security. The proposed agreement achieves privacy protection for users and network slices by introducing user pseudo-identities and slice identity identifier. For network slicing of different service types, an edge controller is introduced between the user and the slicing service provider to assist the inter-slice handover process to ensure that legal users can achieve fast and universal identity authentication during the handover process. Simulation results show that the proposed protocol can improve the efficiency of inter-chip handover authentication and realize a secure and universal handover process.

Key words: network slicing , handover authentication , authentication key negotiation , certificateless

中图分类号: