电子学报 ›› 2017, Vol. 45 ›› Issue (2): 485-491.DOI: 10.3969/j.issn.0372-2112.2017.02.030

• 学术论文 • 上一篇    下一篇

一种新型的LTE-A网络切换认证协议

陈昕, 宋亚鹏, 刘志强   

  1. 北京信息科技大学计算机学院, 北京 100101
  • 收稿日期:2015-10-08 修回日期:2016-09-06 出版日期:2017-02-25
    • 作者简介:
    • 陈昕,男,1965年出生,教授,兼职博士生导师,于2003年在北京理工大学获得博士学位,现为北京信息科技大学计算机学院教授,主要研究领域为计算机网络及性能评价、网络安全、航电网络,曾在《TheJournalofSupercomputing》、《MultimediaToolsandApplications》、《电子学报》和《计算机科学》等期刊上发表多篇论文.E-mail:chenxin@bistu.edu.cn;宋亚鹏,男,1990年出生,硕士,于2016年在北京信息科技大学获得硕士学位,主要研究方向为无线网络与安全.E-mail:songyapeng_bistu@sina.com
    • 基金资助:
    • 国家自然科学基金 (No.61370065,No.61502040); 国家十二五科技支撑计划 (No.2015BAK12B03-3); 北京市优秀人才培养资助青年骨干个人项目 (No.2014000020124G099)

A New Handover Authentication Protocol for LTE-A Network

CHEN Xin, SONG Ya-peng, LIU Zhi-qiang   

  1. School of Computer Science, Beijing Information Science & Technology University, Beijing 100101, China
  • Received:2015-10-08 Revised:2016-09-06 Online:2017-02-25 Published:2017-02-25
    • Supported by:
    • National Natural Science Foundation of China (No.61370065, No.61502040); National Science & Technology Pillar Program during the 12th Five-year Plan Period (No.2015BAK12B03-3); Youth Backbone Individual Program of Beijing Outstanding Talent Training Project (No.2014000020124G099)

摘要:

针对典型蜂窝网络LTE-A网络的切换认证问题,本文通过引入SDN(Software Defined Network,软件定义网络),提出了软件定义LTE-A异构网络架构,在中心控制器中共享UE(User Equipment,用户设备)的安全上下文信息,以实现简化切换认证过程,提高认证效率的目标.中心控制器的加入,使蜂窝与核心网通信时需要增加一次信令开销,而LTE-A网络的标准切换认证方法过于复杂,应用在软件定义LTE-A异构网络中,会产生较多的信令开销.基于代理签名的切换认证方法,使UE在验证身份时不用经过核心网,减少了信令开销.在安全性相同的情况下,基于椭圆曲线的加密体系比基于RSA的加密体系计算量更小,有利于减少中心控制器的计算压力.本文采用椭圆曲线代理签名方法,提出了一种新型的切换认证协议,并运用着色Petri网进行建模和仿真分析.仿真结果表明,该协议是有效的,且安全性更高.

关键词: LTE-A, 切换认证, SDN (Software Defined Network), 椭圆曲线代理签名, 着色Petir网

Abstract:

Aiming at the handover authentication in the LTE-A,SDN is introduced and a new heterogeneous network framework named Software Defined LTE-A is proposed.This framework simplifies the handover authentication via the sharing of security context information in the Controllers.The use of Controller leads to one more communication overhead when the base station communicates to the core network.The standard handover authentication in LTE-A is a complex system that will generate a lot of communication overhead.The handover authentication based on proxy signature make the UE(User Equipment) need not to communicate to core network when UE is authenticated,which reduces the communication overhead.Compared to RSA Cryptography,the Elliptic Curve Cryptography needs less computation that will decrease the computation overhead in the Controller.Adopted the proxy signature based on the Elliptic Curve,a new handover authentication protocol is proposed,and is modeled,simulated,and analyzed by the Colored Petri Nets.The results of the simulation show that the proposed handover authentication is efficient and more secure.

Key words: LTE-A, handover authentication, SDN(software defined network), proxy signature based on elliptic curve, colored Petri Nets

中图分类号: