Method for multi-network guard end-to-end conversation cryptographic key negotiation of striding field

A session key and gatekeeper technology, applied to the public key and key distribution of secure communication, can solve the problem of no end-to-end key negotiation and exchange technology, no consideration of processing capacity, and difficulties in intercommunication communication security, etc. problems, to achieve the effect of increasing flexibility, preventing forgery, and simple layout
CN101207477AInactive Publication Date: 2008-06-25ZTE CORP
0 Cites 10 Cited by

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Applications(China)
Current Assignee / Owner
ZTE CORP
Publication Date
2008-06-25
Estimated Expiration
Not applicable · inactive patent

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
Patent Text Reader

Abstract

The invention discloses a cross-domain multi network keeper end-to-end session key negotiation method, which dynamically negotiates a best key negotiation method in the end-to-end communication through signaling execution flows of ARQ / ACF and LRQ / LCF based on that whether D-H key exchange algorithm and security strategy are supported by the network keepers. The method comprises the following steps: a called network keeper generates a sharing secret, a calling network keeper and a calling endpoint obtain the session key according to the sharing secret, and the calling network keeper and the called network keeper generate the session key by using the D-H key exchange algorithm, thereby the generation and the exchange of the sharing secret or the session key are carried out among each endpoint, thus the limits of low efficiency and bad interconnection and interoperability, which are caused by the fact that the key negotiation method is based on pre-configuration, are overcome under the prior cross-domain multi network keeper end-to-end calling mode.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to the field of packet network communication security, in particular to an end-to-end communication session key negotiation method in a cross-domain multi-gatekeeper direct routing call mode. Background technique

[0002] In the field of packet-based network communication security, the key is the most important. The shared or session key obtained through key exchange between H.323 endpoints on the network can be used for RAS (registration, access and status) signaling, Call signaling, H.245 control signaling, etc. implement security measures such as identity verification, signaling message integrity check, and encryption / decryption of media data streams.

[0003] At present, the method of sharing or session key exchange in multi-gatekeeper routing mode basically adopts pre-configuration and out-of-band methods such as telephone and E-Mail.

[0004] The Direct Routing Call (hereinafter referred to as DRC) mode is an important meth...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More