| With the proposition of strategic conception of the integration of space communication,space information network(SIN)has attracted more and more attention due to its extensive applicability and great expanding access services.However,due to the complicated properties of SIN,such as the dynamic and unstable topology,the highly-exposed links and so on,the security issues become more serious.Meanwhile,space communication has the significant effect on the military application systems,and these security threatens would even cause loss of state property.Therefore,it is of great signicance to do research on key security technology in space information network.Towards the security issues for vertical links in SIN,this paper proposes a lightweight authentication scheme for space information network.It is mainly based on the self-updating strategy for user’s temporary identity to provide secure communication services among users,satellites and network control center.All the computing operations involved in this scheme are just hash function,the bit-wise exclusive-or operation and the string concatenation operation,which are of low computation cost.The security properties discussion and the attacks-resistance power analysis show that the proposed authentication scheme can defend against various typical attacks,especially DoS attacks.It is sufficiently secure with the lowest computation and storage costs.Furthermore,the formal security proof in SVO logic also demonstrates that the scheme can satisfy the security goals very well.Towards the security issues for horizontal links in SIN,this study proposes an anonymous and distributed certificate-less key management scheme(aCL-KMS)for SIN to provide the secure transmission and key management services among satellite links.It mainly adopts the strategy of the distributed key generation,update and agreement instead of the complex centralized key management.Based on the certificate-less public key cryptosystem(CL-PKC),this scheme not only avoids the high cost of complicated certificate management,but also overcome the key-escrow problem of the certificate-based or identity-based public key cryptosystem.Also,due to the fact that the anonymous authentication mechanism adopts the temporary identification of members,this scheme can efficiently protect the members’ privacy and ensure the confidentiality of communications.The security properties discussion and the computational overhead analysis show that the proposed key management system is secure enough to meet the security requirements of SIN,and it is of less computing cost at the same time.Based on the secure communication schemes for horizontal and vertical links in SIN,this paper analysizes the threatened features of the master key in authentication key management system,and tests the effects that system parameters exert on the security strength of master key,finally this study gives a available configure scheme of every network parameters in system.This paper establishes the communication platform of the overall space information network,testing the availability of the proposed anthentication and key management protocol in the SIN which synthesizes the horizontal and vertical links.By analyzing the transmission latency,system stability,packet loss rate and the performance in the distributed system,this paper proves that the proposed scheme is suitable to apply in SIN,and gives the optimized selection approach of network system parameters finally. |
PDF Full Text Request