A distributed access authentication management method in a leo satellite network

Abstract

The invention discloses a distributed access authentication management method in a LEO satellite network, which adopts an identity-based cryptographic system, uses the private key of the key generation center to quickly generate the public-private key pair of the user and the satellite node, and stores the public-private key pair in the identification field The identity information is agreed in the system to realize the role distinction in the system; at the same time, based on the chain distributed storage technology of the blockchain, a trusted chain with the key generation center and the satellite as the main body of trust is constructed to realize rapid access authentication of users and fast inter-satellite The handover identity verification function adapts to the characteristics of dynamic topology and frequent handover of satellite-ground links in the LEO satellite network. On the other hand, this method adopts the distributed storage technology of the block chain, and uses the trust chain as the consensus mechanism to record relevant information such as user registration, logout, login, logout, and switching, and to ensure the accuracy, integrity, and accuracy of user logs. Consistency, traceability and non-tampering, avoiding the bottleneck of the central node in the access function and authentication performance.

Description

technical field [0001] The present invention relates to encryption and decryption, identity authentication and distributed database technology, in particular, a database applicable to LEO satellite networks that can realize security authentication, fast switching, and distributed recording and storage of information such as registration, logout, login, logout, and switching. method. Background technique [0002] The identity-based cryptosystem (IBC) was first proposed by Shamir in 1984. Its biggest advantage is that each node can use its own identity to generate a public key, which can be calculated by the key generation center (KGC) accordingly. Private key, when a user needs to securely send information to another user, he only needs to use the receiver's identity to calculate its public key and use it for encryption, and the receiver uses KGC to calculate and return to his own private key for decryption , avoiding the overhead of key management and digital certificate is...

AI Technical Summary

Problems solved by technology

On the other hand, the authentication method used in the traditional satellite network generally has a large calculation and communication overhead, and it is not suitable for the LEO satellite network with the characteristics of dynamic topology and frequent switching of communication links. Motorola Corporation of the United States Take the Iridium system as an example, the user can see a satellite for about 10 minutes, so it is necessary to develop a method that can quickly perform authentication, and at the same time, when frequent link switching occurs, it can realize user nodes between different satellites Fast Switching Security Authentication Method

Images