Position prejudgment-based prequalification fast switching method
A fast switching and pre-authentication technology, applied in the field of network security, can solve problems such as low computing power, hidden dangers, and inability to apply high security, and achieve the effect of maintaining security features, reducing public key operations, and achieving high security.
Inactive Publication Date: 2010-10-13
XIDIAN UNIV +1
View PDF2 Cites 3 Cited by
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
There are serious security risks in the handover process from the mobile node to the new agent. The signaling messages in this handover process are all transmitted in plain text. Malicious nodes can pretend to be mobile nodes to initiate the access process to the new agent at will, resulting in interruption of communication between legitimate mobile nodes and New proxy suffers from spoofing attack
At the same time, the common use of hand-held terminals in the mobile environment, its low computing power makes it impossible to apply to military networks with high security and high computing requirements
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View moreImage
Smart Image Click on the blue labels to locate them in the text.
Smart ImageViewing Examples
Examples
Experimental program
Comparison scheme
Effect test
Embodiment Construction
[0026] The present invention adopts a network structure of fixed agents, and corresponding IPsec protection is respectively configured between neighbor agents and between MN and home agent HA at the initial stage of network configuration, and each MN has an independent home address as its unique identifier. The proxy provides access authentication, peer authentication and mandatory access control functions for nodes in the domain.
[0027] refer to figure 1 , the pre-authentication fast switching method based on position prediction provided by the present invention includes:
[0028] Step 1: The local agent LA sends a PAK to the neighbor new agents NLAs to obtain the address prefixes and network resource data of the NLAs.
[0029] The local agent LA determines the neighbor new agent NLAs that the mobile node MN will handover to through the GPS position prediction method, and the LA sends the entire message to the NLAs, which includes the handover initiation request HI, the di...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More PUM
Login to View More Abstract
The invention discloses a position prejudgment-based prequalification fast switching method, mainly solving the security problem of the switching process of a mobile IPv6 network. The switching process comprises the following steps: local agent (LA) is used to judge mobile node (MN) switching area in the mode of GPS position prejudgment, the LA sends prequalification key (PAK) to new neighborhood agents (NLAs) in advance; the LA collects the network address prefix and network resource information of the NLAs to transmits to the MN; the MN selects a new agent according to the link layer information and the received network resource condition of the NLAs; and when switching to a new network, the MN sends a cryptographically signed message to the new agent to directly start bidirectional identity authentication with the new agent and establish IPsec, wherein IPsec is used to increase security guard during the switching qualification communication process and the qualification communication process is as available and effective as possible on the basis of the demand of high security protection. The method of the invention can well perform security guard to the switching process of the large-scale distributed mobile IPv6 network with multilevel security and can be used in the military mobile IPv6 network.
Description
technical field [0001] The invention belongs to the technical field of network security, and in particular relates to a mobile IPsec fast switching method, which is used to protect the security of the switching process of a mobile IPv6 network with multi-level security features. technical background [0002] The Internet Engineering Working Group IETF formally proposed the mobile IPv6 protocol, RFC3775, in June 2004 on the basis of IPv6. This protocol has greater advantages than IPv4 protocol in supporting mobility, solving security problems, realizing high service quality, and providing sufficient address space. However, due to the relatively fragile security mechanism of the Internet itself, coupled with the openness of wireless network transmission media, the large-scale mobility of mobile terminals, the dynamics of topological structures, and the limited storage and computing resources of mobile devices, mobile IP networks It is more vulnerable to security threats than ...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More Application Information
Patent Timeline
Login to View More IPC IPC(8): H04W8/04H04W8/06H04W12/04H04W36/08H04L29/12H04W12/062H04W12/069H04W12/63
Inventor 祝世雄李小平董庆宽安红章刘彦明冯选任飞唐佳
Owner XIDIAN UNIV