Research And Application On Space Key Management Algorithm In CCSDS Architecture

The data link protocols proposed by the Consultative Committee for Space Data Systems have been widely used in space missions of various space agencies in the world.But they lack a dynamic key update mechanism suitable for space communication.For the current space key management schemes,there are still problems of poor scalability,insufficient security and low key update efficiency.This paper proposes a hierarchical space key management algorithm suitable for spatial communication characteristics and the hierarchical space key management algorithm is applied to the CCSDS-TC protocol to further ensure spatial data security.The main research works completed in this paper are as follows:(1)The TC protocol and basic theory of key management technology are studied deeply in this paper.The communication principle and security mechanism of TC protocol are analyzed.The basic ideas and principles of identity-based key management technology are studied.And the performance analysis indicators of space key management algorithm are analyzed in this paper.(2)According to the characteristics of space communication,the network model of hierarchical space key management algorithm is proposed and the life cycle of space key is designed in this paper.The master key management algorithm based on LDPC code for the satellite level master key is proposed to manage the generation,distribution,update and deactivated status of the satellite level master key.Theoretical analysis and experimental comparison results indicate that the master key management algorithm based on LDPC code has excellent security and low satellite resource consumption.(3)Taking the dynamic characteristics of spatial nodes into account,the domainlevel key management algorithm based on bilinear pairing is studied.First of all,the group key update algorithm is designed exhaustively when the domain level member joins,the domain level member leaves and the domain level member is fixed and the authentication mechanism in the key update process is provided in this paper.Then the security,storage overhead,communication overhead and computational consumption of the algorithm are analyzed in detail.Finally,the comparison experiments show that the domain-level key management algorithm based on bilinear pairing has less processing time and is suitable for key update of space network with dynamical change.(4)The TC protocol security mechanism based on hierarchical space key management algorithm is designed and implemented in this paper.According to the proposed TC protocol security mechanism communication model,the protocol processing procedures of the sender and receiver of the TC protocol security mechanism based on space key management are designed.Meanwhile,the network model and node model of the TC protocol security mechanism based on the hierarchical space key management algorithm are constructed on the OPNET network simulation platform,and the finite state machines of the process model are realized.Simulation test of space key dynamic update,simulation results of data security transmission and anti-attack tests demonstrate that the proposed hierarchical space key management algorithm in this paper has great security,scalability and low resource consumption.It can provide key parameter support for security mechanism of space communication system and has significant practical value.