Resource public key infrastructure bidirectional authorization method based on block chain

A public key infrastructure and blockchain technology, applied in the field of two-way authorization of resource public key infrastructure, can solve problems such as traffic blocking corresponding to legal IP addresses and illegal BGP routes.

Active Publication Date: 2020-05-08
GUANGZHOU UNIVERSITY
View PDF4 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0011] The technical problem to be solved by the present invention is to provide a method for two-way authorization of resource public key infrastructure based on block chains, to solve the current problem that RPKI faces du

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Resource public key infrastructure bidirectional authorization method based on block chain
  • Resource public key infrastructure bidirectional authorization method based on block chain
  • Resource public key infrastructure bidirectional authorization method based on block chain

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0121] Such as Figure 4 Shown, the present invention comprises the following steps:

[0122]The first step is to build a blockchain-based resource public key infrastructure system RPKIB, such as figure 1 As shown, RPKIB consists of a resource issuer, a resource transaction application client, a resource receiver, and a blockchain network.

[0123] The blockchain network is connected with resource issuers, resource receivers, and resource transaction application clients. The resource issuer and resource receiver serve as a node of the blockchain network, and the resource transaction application client is installed on the node where the resource issuer and resource receiver are located. The resource transaction application client performs various operations of the resource certificate and the routing origin authorization ROA as transactions through the blockchain network, and saves the transaction records in the distributed ledger. Distributed ledgers exist in all blockchain...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a resource public key infrastructure bidirectional authorization method based on a block chain, and aims to solve the security threat problems that a legal BGP route is illegal, a legal IP address is blocked and the like caused by malicious operation. The method comprises the following steps: constructing a resource public key infrastructure system RPKIB based on a block chain, wherein the resource public key infrastructure system RPKIB is composed of a resource issuer, a resource transaction application client, a resource receiver and a block chain network; changing any operation of issuing, cancelling, updating and modifying of a resource certificate by the resource issuer into a bidirectional authorization mode, and implementing the operation of the resource certificate only when the issuer and the receiver agree; and carrying out the operations of the resource certificate RC and the route origin authorization ROA as transactions by the issuer through a blockchain network, and distinguishing whether the operations are malicious behaviors or normal operations through bidirectional authorization. The method is adopted to overcome malicious operation facedby the current RPKI, and security threats such as illegal legal BGP routing and legal IP address blocking are effectively avoided.

Description

technical field [0001] The invention belongs to the field of network information security, and in particular relates to a block chain-based resource public key infrastructure two-way authorization method for improving the security of RPKI (Resource Public Key Infrastructure, ie resource public key infrastructure). Background technique [0002] BGP (Border Gateway Protocol, Border Gateway Protocol) is an inter-domain routing protocol in the Internet. However, the traditional BGP protocol is vulnerable to many security threats, and one of the most common BGP attacks is prefix hijacking. By forging the origin AS (Autonomous system, autonomous system) in the BGP route advertisement information (origin AS, that is, the AS that initiated the route advertisement information), the traffic corresponding to these IP address prefixes is intercepted or discarded by the hijacker's AS. Resource public key infrastructure (RPKI) is an infrastructure used to support the verification of the ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L9/08H04L9/32H04L29/06
CPCH04L9/0825H04L9/3268H04L9/3263H04L63/0869H04L9/3239H04L9/50H04L9/30H04L63/0823
Inventor 刘亚萍张硕方滨兴孙鹏李清源周逸菲
Owner GUANGZHOU UNIVERSITY
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap