一种高效的AAA下无对的无证书移动IP注册协议

doi:10.3969/j.issn.1001-2400.2014.02.009

J4 ›› 2014, Vol. 41 ›› Issue (2): 51-57.doi: 10.3969/j.issn.1001-2400.2014.02.009

一种高效的AAA下无对的无证书移动IP注册协议

许捷^1,2;党岚君³;石光明¹

(1. 西安电子科技大学电子工程学院，陕西西安 710071;
2. 西安建筑科技大学信息与控制工程学院，陕西西安 710055;
3. 西安电子科技大学综合业务网理论及关键技术国家重点实验室，陕西西安 710071)

收稿日期:2013-07-10 出版日期:2014-04-20 发布日期:2014-05-30
通讯作者: 许捷
作者简介:许捷(1976-)，男，西安电子科技大学博士研究生，E-mail：xujie@mail.xidian.edu.cn．
基金资助:
国家自然科学基金资助项目(61102056)；陕西省教育厅自然科学研究资助项目(12JK0555)；西安建筑科技大学青年科技基金资助项目(QN0826)

Efficient mobile IP registration protocol with AAA using pairing-free certificateless public key cryptography

XU Jie^1,2;DANG Lanjun³;SHI Guangming¹

(1. School of Electronic Engineering, Xidian Univ., Xi'an 710071， China;
2. School of Information and Control Engineering, Xi'an Univ. of Architecture and Technology, Xi'an 710055， China;
3. State Key Lab. of Integrated Service Networks, Xidian Univ., Xi'an 710071， China)

Received:2013-07-10 Online:2014-04-20 Published:2014-05-30
Contact: XU Jie

摘要/Abstract

摘要：

为了实现移动IP的商业部署，需要将认证、授权和计费(Authentication， Authorization， Accounting，AAA)引入移动IP注册过程．针对该注册过程安全与效率兼顾的问题，提出了AAA下基于无对的无证书移动IP注册协议．采用强安全高效的无对的无证书签名方案来实现外地AAA服务器与家乡AAA服务器之间的相互认证; 采用消息认证码来实现家乡AAA服务器对移动节点以及移动节点对家乡代理的认证．首次采用动态更新的临时身份来代替网络服务标识中的用户信息，实现了用户匿名性．分析结果表明，该协议达到了预期的安全目标．与Cao等人提出的协议相比，该协议具有更高的安全性，注册时延减少了约20％．

关键词: 移动IP, 无证书签名, 认证、授权和计费, 注册

Abstract:

In order to realize the commercial deployment of the mobile IP, AAA (Authentication, Authorization, Accounting) is introduced into mobile IP registration. Aimed at the security and efficiency problems of the registration, a mobile IP registration protocol with AAA is proposed based on pairing-free certificateless public key cryptography. The mutual authentications between AAAF (AAA server in Foreign networks) and AAAH (AAA server in Home networks) are achieved by using a strongly secure and efficient certificateless signature scheme without pairings; the authentication of AAAH to MN (Mobile Node) and that of MN to HA (Home Agent) are realized via the MAC (Message Authentication Code). The user anonymity is achieved via the dynamic TID (Temporary Identity) instread of the user's account information of the NAI (Network Access Identifier). Theoretical analyses show that the protocol reaches the expected security goals. Compared with the protocol proposed by Cao et al., the protocol reduces the registration delay about 20％ while improving the security.

Key words: mobile IP, certificateless signature, authentication, authorization, accounting(AAA), registration

中图分类号:

TN918.91

许捷;党岚君;石光明. 一种高效的AAA下无对的无证书移动IP注册协议[J]. J4, 2014, 41(2): 51-57.

XU Jie;DANG Lanjun;SHI Guangming. Efficient mobile IP registration protocol with AAA using pairing-free certificateless public key cryptography[J]. J4, 2014, 41(2): 51-57.

参考文献

［1］ Perkins C. IP Mobility Support for IPv4 ［DB/OL］. ［2010-11-20］. http://www.ietf.org/rfc/rfc5944.txt.
［2］ Calhoun P, Johansson T, Perkins C, et al. Diameter Mobile IPv4 Application ［DB/OL］. ［2005-08-17］. http://www.ietf.org/rfc/rfc4004.txt.
［3］ Chou C Y, Min S H, Jian W L, et al. A Solution to Mobile IP Registration for AAA ［C］//Proceedings of 7th CDMA International Conference. Berlin: Springer, 2003: 329-337.
［4］王立明, 杨波. 集成AAA的移动IP注册方案［J］. 西安电子科技大学学报, 2004, 31(6): 952-954.
Wang Liming, Yang Bo. A Scheme for Registration in the Mobile IP Integrated with AAA ［J］. Journal of Xidian University, 2004, 31(6): 952-954.
［5］李兴华, 王巍, 马建峰. 一种AAA下移动IP的认证注册方案［J］. 网络安全技术与应用, 2004(7): 51-54.
Li Xinghua, Wang Wei, Ma Jianfeng. A Mobile IP Authentication and Registration Scheme under AAA ［J］. Network Security Technology ＆ Application, 2004(7): 51-54.
［6］刘东苏, 王新梅. 引入AAA模型的移动IP认证与注册协议［J］. 网络安全技术与应用, 2006(4): 91-92.
Liu Dongsu, Wang Xinmei. Secure Authentication and Registration Protocol in Mobile IP with AAA ［J］. Network Security Technology ＆ Application, 2006(4): 91-92.
［7］马东, 何大可, 郑宇, 等. 基于AAA的移动IP快速认证注册方案研究［J］. 铁道学报, 2008, 30(1): 98-103.
Ma Dong, He Dake, Zheng Yu, et al. A Fast Authentication and Registration Scheme for AAA-based Mobile IP ［J］. Journal of the China Railway Society, 2008, 30(1): 98-103.
［8］ Chenait M. LMIP/AAA: Local Authentication, Authorization and Accounting (AAA) Protocol for Mobile IP ［C］//ICGeS 2008. Berlin: Springer, 2008: 228-238.
［9］ Lee B G, Choi D H, Kim H G, et al. Mobile IP and WLAN with AAA Authentication Protocol Using Identity-based Cryptography ［C］//Proceedings of International Conference on Telecommunications. Piscataway: IEEE, 2003: 597-603.
［10］ Kwang C J. ID-Based Secure Session Key Exchange Scheme to Reduce Registration Delay with AAA in Mobile IP Networks ［C］//International Conference on Computational Science. Berlin: Springer, 2005: 510-518.
［11］ Cao X, Kou W, Li H. Secure Mobile IP Registration Scheme with AAA from Parings to Reduce Registration Delay ［C］//International Conference on Computational Intelligence and Security. Piscataway: IEEE, 2006: 1037-1042.
［12］王会歌, 王彩芬, 李泳斌, 等. 没有pairing的无证书公钥签名方案［J］. 计算机应用, 2008, 28(6): 1395-1397.
Wang Huige, Wang Caifen, Li Yongbin, et al. Certificateless Public Key Signature Scheme without Pairing ［J］. Computer Applications, 2008, 28(6): 1395-1397.
［13］ Ge Aijun, Chen Shaozhen, Huang Xinyi. A Concrete Certificateless Signature Scheme without Pairings ［C］//International Conference on Multimedia Information Networking and Security. Piscataway: IEEE, 2009: 374-377.
［14］葛爱军, 陈少真. 具有强安全性的不含双线性对的无证书签名方案［J］. 电子与信息学报, 2010, 32(7): 1765-1768.
Ge Aijun, Chen Shaozhen. Strongly Secure Certificateless Signature Scheme without Pairings ［J］. Journal of Electronics ＆ Information Technology, 2010, 32(7): 1765-1768.
［15］王圣宝, 刘文浩, 谢琪. 无双线性配对的无证书签名方案［J］. 通信学报, 2012, 33(4): 93-98.
Wang Shengbao, Liu Wenhao, Xie Qi. Certificateless Signature Scheme without Bilinear Pairings ［J］. Journal on Communications, 2012, 33(4): 93-98.
［16］ Gong Peng, Li Ping. Further Improvement of a Certificateless Signature Scheme without Pairing ［DB/OL］. ［2013-12-30］. wiley.com/doi/10.1002/dac.24571/full.
［17］ Tian Miaomiao, Huang Liusheng. Cryptanalysis of a Certificateless Signature Scheme without Pairings［DB/OL］. ［2013-12-30］. wiley.com/doi/10.1002/dac.2310/full.
［18］ He D, Chen J, Zhang R. An Efficient and Provably-secure Certificateless Signature Scheme without Bilinear Pairings ［J］. International Journal of Communication Systems, 2012, 25(11): 1432-1442.
［19］王亚飞, 张睿哲. 强安全无对的无证书签名方案［J］. 通信学报, 2013, 34(2): 94-99.
Wang Yafei, Zhang Ruizhe. Strongly Secure Certificateless Signature Scheme without Pairings ［J］. Journal on Communications, 2013, 34(2): 94-99.
［20］ Kulkarni M, Patel A, Leung K. Mobile IPv4 Dynamic Home Agent (HA) Assignment ［DB/OL］. ［2006-03-06］ . http://www.ietf.org/rfc/rfc4433.txt.
［21］ Johansson F, Johansson T. Mobile IPv4 Extension for Carrying Network Access Identifiers［DB/OL］. ［2004-06-08］. http://www.ietf.org/rfc/rfc3846.txt.
［22］ Perkins C. Authentication, Authorization, and Accounting (AAA) Registration Keys for Mobile IPv4 ［DB/OL］. ［2005-03-09］. http://www.ietf.org/rfc/rfc3957.txt.
［23］ Sufatrio K Y L. Mobile IP Registration Protocol: a Security Attack and New Secure Minimal Public-key Based Authentication ［C］//Proceedings of the International Symposium on Parallel Architectures, Algorithms and Networks. Los Alamitos: IEEE, 1999: 364-369.

[1]	唐军;裴昌幸;苏博. PMIPv6本地化路由机制研究[J]. J4, 2012, 39(1): 98-104.
[2]	明洋1;詹阳2;王育民2;庞辽军2. 一个改进的无证书签名方案 [J]. J4, 2008, 35(6): 1094-1099.
[3]	党岚君1;寇卫东1;2;曹雪菲1;樊凯1. 具有用户匿名性的移动IP注册协议 [J]. J4, 2008, 35(2): 282-287.
[4]	王立明;杨波. 集成AAA的移动IP注册方案[J]. J4, 2004, 31(6): 952-954.
[5]	王立明;杨波. 移动IP中基于时戳的注册协议[J]. J4, 2004, 31(5): 777-780.
[6]	刘东苏;杨波;王新梅. 移动IP认证协议[J]. J4, 2003, 30(4): 455-458.
[7]	裴珂;李建东;郭峰. 移动IP切换性能研究[J]. J4, 2002, 29(3): 328-333.
[8]	裴珂;李建东;董海霞. IP移动性研究[J]. J4, 2001, 28(5): 663-668.

一种高效的AAA下无对的无证书移动IP注册协议

Efficient mobile IP registration protocol with AAA using pairing-free certificateless public key cryptography

PDF (PC)

赞

可视化

被引次数

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 8

Metrics

本文评价

推荐阅读 0