|国家科技期刊平台
| 注册
首页|期刊导航|网络与信息安全学报|面向卫星互联网的设备跨域轻量级认证

面向卫星互联网的设备跨域轻量级认证

陈操 李凤华 于梦格 郭超 李子孚 耿魁

网络与信息安全学报2025,Vol.11Issue(3):120-133,14.
网络与信息安全学报2025,Vol.11Issue(3):120-133,14.DOI:10.11959/j.issn.2096-109x.2025034

面向卫星互联网的设备跨域轻量级认证

Lightweight cross domain authentication for satellite internet

陈操 1李凤华 1于梦格 2郭超 3李子孚 4耿魁4

作者信息

  • 1. 中国科学院信息工程研究所,北京 100085||中国科学院大学网络空间安全学院,北京 100049||网络空间安全防御全国重点实验室,北京 100085
  • 2. 北京电子科技学院网络空间安全系,北京 100070
  • 3. 中国科学院信息工程研究所,北京 100085||网络空间安全防御全国重点实验室,北京 100085||北京电子科技学院电子与通信工程系,北京 100070
  • 4. 中国科学院信息工程研究所,北京 100085||网络空间安全防御全国重点实验室,北京 100085
  • 折叠

摘要

Abstract

With the evolution of next-generation network technologies,ubiquitous networks have developed rapidly,and heterogeneous integrated architectures,particularly satellite networks,have significantly enhanced information service capabilities.However,open network environments have introduced security risks such as device identity spoofing and data link hijacking,which posed severe challenges to trusted access in satellite networks.Traditional au-thentication schemes have been constrained by complex certificate management mechanisms and reliance on third-party key distribution centers.To address these issues,a cross-domain device authentication framework based on cer-tificateless public key cryptography(CL-PKC)was proposed.The framework achieved system optimization through three key technical breakthroughs.First,a key parameter splitting mechanism was introduced to eliminate single-point failure risks in traditional key centers.Second,a cross-domain identity mapping protocol was developed to re-solve trusted identity migration across heterogeneous networks.Third,dynamic anonymous identification technology was applied to enhance privacy protection throughout the key lifecycle management process.Experimental evalua-tions demonstrate that compared to traditional PKI solutions,the proposed scheme could resist multiple typical secu-rity threats.In resource-constrained satellite network scenarios,while maintaining equivalent security strength,the computational cost of the scheme remains within acceptable levels,indicating its significant engineering applicability.

关键词

卫星互联网/泛在网络/无证书公钥密码/跨域认证

Key words

satellite internet/ubiquitous networks/CL-PKC/cross-domain authentication

分类

计算机与自动化

引用本文复制引用

陈操,李凤华,于梦格,郭超,李子孚,耿魁..面向卫星互联网的设备跨域轻量级认证[J].网络与信息安全学报,2025,11(3):120-133,14.

基金项目

国家自然科学基金(U23B2024,62202463) The National Natural Science Foundation of China(U23B2024,62202463) (U23B2024,62202463)

网络与信息安全学报

2096-109X

访问量0
|
下载量0
段落导航相关论文