Method and system for establishing key between nodes

An establishment method and inter-node technology, applied in transmission systems, digital transmission systems, and key distribution, can solve problems such as increased packet delay, complex distribution and update processes, and attacks on switching devices
CN101814987BActive Publication Date: 2012-06-13CHINA IWNCOMM
0 Cites 0 Cited by

Patent Information

Authority / Receiving Office
CN Β· China
Patent Type
Patents(China)
Current Assignee / Owner
CHINA IWNCOMM
Publication Date
2012-06-13

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
Patent Text Reader

Abstract

The invention discloses a method for establishing a key between nodes. The method comprises the following steps that: 1) a sending source node NSource sends a first key negotiation request packet to switching equipment SWFirst; 2) the switching equipment SWFirst sends a second key negotiation request packet to switching equipment SWLast; 3) the switching equipment SWLast sends a third key negotiation request packet to a destination node NDestination; 4) the destination node NDestination sends a third key negotiation response packet to the switching equipment SWLast; 5) the switching equipmentSWLast sends a second key negotiation response packet to the switching equipment SWFirst; 6) the switching equipment SWFirst sends a first key negotiation response packet to the sending source node NSource; and 7) the sending source node NSource receives the first key negotiation response packet. The key between legal nodes of a local area network can be flexibly established and updated, and a manager does not need deploying a shared static key pair between every two nodes of the total network.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to the application field of communication network security, in particular to a method and system for establishing keys between nodes. Background technique

[0002] The wired LAN is generally a broadcast network, and the data sent by one node can be received by other nodes. All nodes on the network share the channel, which brings great security risks to the network. As long as the attacker accesses the network to monitor, he can capture all the data packets on the network. The local area network LAN defined by the existing national standard GB / T 15629.3 (corresponding to IEEE 802.3 or ISO / IEC 8802-3) does not provide data security methods, which makes it easy for attackers to steal key information.

[0003] In the wired LAN, the standard organization IEEE realizes the security of the link layer by enhancing the security of IEEE 802.3. IEEE 802.1AE provides a data encryption protocol for protecting Ethernet, and adopts hop-by-hop...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More