An identity-based authentication method for space-based networks

Abstract

The invention discloses an identity-based authentication method oriented to a space-based network, and aims to solve the problem of security authentication between ground terminals and satellites in the space-based network and improve the security of space-based network communication. The technical solution is to build a space-based network-oriented identity-based authentication system composed of ground terminals, key generation center KGC, and low-orbit satellites; KGC's initialization calculation module calculates the system's master key and public parameters; KGC's private key calculation module Calculate the corresponding private key, and distribute the private key and public parameters to ground terminals and satellites. Terminal TE A Perform current overhead satellite LEO when accessing A and TE A mutual authentication and session key negotiation, then LEO A and TE A Normal communication, LEO A If the LEO is predicted at the end of the service A If you are about to leave the current area, you need to perform inter-satellite switching authentication. If you predict LEO A do not leave, the LEO A and TE A Go ahead and communicate. The invention effectively reduces the size of the transmission message, and realizes fast switching authentication and session key agreement while ensuring security.

Description

technical field [0001] The invention relates to the field of space network security communication, in particular to an identity-based authentication method for a space-based network. Background technique [0002] As a powerful supplement to traditional terrestrial networks, space-based networks can provide access services to special areas such as deserts, achieving true global interconnection. However, due to the natural open environment of satellite communications, it is easy for malicious attackers to obtain communication data between satellites and ground or pretend to be legitimate users to issue malicious instructions. These behaviors pose a great challenge to the security of space-based networks. Therefore, the space-based network needs an authentication scheme to ensure its own operation security; authentication has two main functions: one is to identify the legitimacy of the ground terminal, to ensure that only legal terminals can send the acquired data to the satell...

AI Technical Summary

Problems solved by technology

[0005] (2) High network transmission delay

[0006] (3) Limited network bandwidth resources

[0007] (4) The computing and storage capacity of the ground terminal and on-board is limited

In this method, both communication parties need to send their own digital certificates to each other, and the overhead of communication and calculation is relatively large, which is not suitable for the current space-based network environment with limited communication bandwidth.

[0010] (2) The source authentication method based on the extended broadcast authentication protocol certificate refers to using the satellite as the authentication center to generate the extended broadcast authentication protocol certificate and run the source authentication protocol. This method reduces the overhead brought by the traditional digital certificate transmission, but High requirements for on-board computing and storage capacity, high cost, not conducive to promotion

But there is no public literature on the use of identity-based signature algorithm with message recovery function for mutual authentication and session key agreement between satellites and ground terminals in space-based networks

Images