软件导刊Issue(11):158-162,5.DOI:10.11907/rjdk.143487
一种抗D oS攻击的轻量级密钥交换协议
A Lightweight Key Exchange Protocol With Anti-DoS Attack
鲁志萍 1许军1
作者信息
- 1. 江苏信息职业技术学院物联网工程系,江苏无锡214011
- 折叠
摘要
Abstract
By analyzing security and performance deficiencies of IKEv2 and JFK in the large-scale deployment of IPSec ap-plications ,the paper proposes a lightweight key exchange protocol (LKE) in order to reduce the number of messages and the cost of computing resources effectively .LKE solves the coexistence of both anti-DoS attack and perfect forward secrecy by classical puzzle and two round asynchronous exchanges .It is shown by simulation that LKE strongly accommodates communication with limited bandwidth and exceeds IKEv2 and JFK in performance .LKE acquires less convergence time by 20% and 10% respectively while the wireless bandwidth decreases to less than 384kbps .关键词
密钥交换/IKEv2/JFK/拒绝服务攻击/完美前向安全Key words
Key Exchange/IKEv2/JFK/Denial of Service Attack/Perfect Forward Secrecy分类
信息技术与安全科学引用本文复制引用
鲁志萍,许军..一种抗D oS攻击的轻量级密钥交换协议[J].软件导刊,2014,(11):158-162,5.
