Design And Implementation Of Access Authentication Protocol In The New Internet

With the rapid development of the Internet, users of the network have more needs on mobility and security. In order to meet the users’ need in the information age, we need advanced basic theory and network system. The New Internet following the identity-location separation theory is trying to solve the inherent defects of the traditional internet, such as scalability, mobility and security.The thesis describes the next-generation internet, and introduces the development of identity-location separation theory, and shows the theory’s superiority in detail. In addition to this, the introduction of the New Internet architecture based on identity-location separation theory is also included in the thesis. The thesis fits the New Internet with an access authentication protocol.In this work, before introducing tri-element peer authentication mechanism to the New Internet, we analyze the popular authentication methods, the importance of access authentication and the disadvantages of two-element peer authentication mechanism. And then introduces tri-element peer authentication mechanism into New Internet, and shows its advantages. The thesis presents an access authentication mechanism in New Internet in detail, including certification entity division, the certification process design, detailed message formats, and authentication parameters encryption methods. According to the design plan, we show the detail about the function modules in the three entities, the data structure, and the function call relations. We complete coding in Linux operating system in C language in three function entities (terminals, access switch routers, authentication servers) to achieve the two-way authentication between the terminal and the access switch router. In the last, we complete the authentication mechanism in laboratory test system. I design test cases to test the authentication system, show the configuration process in detail, the registration process and the certification process. We analyze the authentication result in the last and summarize the content of my work and make recommendations for future research directions of the New Internet. The authentication system not only enhance the security level of the New Internet, but also carry out more to research in the New Internet.