| With the development of Internet and mobile communication, Mobile Internet is progressing very fast. Users could access Mobile Internet via mobile terminals and get Internet service everywhere. The prospect of Mobile Internet is very promising. In order to achieve the goals of Mobile Internet, there are many problems to solve, and AAA (Authentication, Authorization and Accounting) is one of them.Authentication is the verification of the identity of a subject performing an action. Authorization is the verification of whether a subject is allowed to perform an action on an object, e.g., access to or use of some objects. Accounting is the collection and aggregation of information (accounting records) in relation to a customer's service utilization. AAA is very important for users, service providers and operators. AAA in Mobile Internet is different from traditional AAA in mobility, heterogeneity and security aspects. Mobility means user may change access point and operator from time to time. Heterogeneity means the Mobile Internet comprises various wireless networks, such as WLAN, GSM, UMTS, satellite network, etc. Security means the security demands is much higher in Mobile Internet AAA, since the radio interface is open and it's easier for hackers to attack.Authentication and authorization issues are studied in this dissertation. The main contributions are as follows:1) Traditional trust model is not adequate for the illustration of trust relationship in Mobile Internet. New problems including time-limited, trust-transfer are discussed in this dissertation. New methods for trust model description, trust value calculation and trust period calculation are introduced. As far as Mobile Internet is concerned, a three planes authentication framework is designed, which utilizes current trust mechanisms and provides guarantee for inter-working of different AAA system.2) For mobile IPv6 protocol, a secure access system, named SECCESS, is designed. SECCESS has some advantages such as link-layer independent, no modification of IPv6 protocol stack, etc. It is suitable for wired computer network as well as wireless computer network. The correctness of this protocol is analyzed through the model logic AUTOLOG.3) The integration of mobile communication and wireless network is important for a unified Mobile Internet. Current AAA mechanism in integration has large latency due to inter-domain AAA messages. The hierarchal AAA architecture is created to reduce the latency. A Diameter HAA protocol is designed to facilitate the integration of WLAN and 3G networks.4) After the user has accessed the network, service oriented AAA is also needed. With the...
|
PDF Full Text Request