计算机工程2012,Vol.38Issue(15):114-118,5.DOI:10.3969/j.issn.1000-3428.2012.15.033
移动节点间安全关联管理方案设计
Design of Security Association Management Scheme Between Mobile Nodes
摘要
Abstract
There are disconnection problems in Internet Key Exchange version2(IKEv2) scheme of IETF standards when nodes changing IP address during Security Association(SA) update. Mobile IKE(MOBIKE) has low efficiency and is unable to resist malicious reflection attack during SA update. So this paper presents a new management scheme by improving the creation of SA, decreasing renegotiation processing on mobile nodes SA, creating relativity between security association and mobile node's home address. Analysis result shows that the new scheme guarantees the SA update when mobile nodes changing address off-line and behaves better in efficiency and security compared with MOBIKE.关键词
安全关联/IKEv2方案/安全关联数据库/家乡地址/切换/绑定更新Key words
Security Association(SA)/ Internet Key Exchange version2(IKEv2) scheme/ Security Association Database(SAO)/ home address/ handover/ Binding Update(BU)分类
信息技术与安全科学引用本文复制引用
孙凌,田源,邢洪智..移动节点间安全关联管理方案设计[J].计算机工程,2012,38(15):114-118,5.基金项目
现代通信国家重点实验室基金资助项目(9140C110702090) (9140C110702090)
河南省高等学校青年骨干教师资助计划基金资助项目 ()
