An Internet Key Exchange Protocol Based on Public Key Infrastructure  被引量:2

An Internet Key Exchange Protocol Based on Public Key Infrastructure

在线阅读下载全文

作  者:朱建明 马建峰 

机构地区:[1]School of Computer, Xidian University, Xi'an 710071, P.R. China ,State Key Laboratory for Information Security, Chinese Academy of Sciences, Beijing 100039, P.R. China [2]School of Computer, Xidian University, Xi'an 710071, P.R. China

出  处:《Journal of Shanghai University(English Edition)》2004年第1期51-56,共6页上海大学学报(英文版)

基  金:theNationalHigh TechnologyResearchandDevelopmentProgramofChina (GrantNo . 863 -2 0 0 2AA14 3 0 2 1)

摘  要:Internet key exchange (IKE) is an automated key exchange mechanism that is used to facilitate the transfer of IPSec security associations (SAs). Public key infrastructure (PKI) is considered as a key element for providing security to new distributed communication networks and services. In this paper, we concentrate on the properties of the protocol of Phase 1 IKE. After investigating IKE protocol and PKI technology, we combine IKE protocol and PKI and present an implementation scheme of the IKE based on PKI. Then, we give a logic analysis of the proposed protocol with the BAN-logic and discuss the security of the protocol. The result indicates that the protocol is correct and satisfies the security requirements of Internet key exchange.Internet key exchange (IKE) is an automated key exchange mechanism that is used to facilitate the transfer of IPSec security associations (SAs). Public key infrastructure (PKI) is considered as a key element for providing security to new distributed communication networks and services. In this paper, we concentrate on the properties of the protocol of Phase 1 IKE. After investigating IKE protocol and PKI technology, we combine IKE protocol and PKI and present an implementation scheme of the IKE based on PKI. Then, we give a logic analysis of the proposed protocol with the BAN-logic and discuss the security of the protocol. The result indicates that the protocol is correct and satisfies the security requirements of Internet key exchange.

关 键 词:AUTHENTICATION ENCRYPTION Interent key exchange(IKE) public key infrastructure(PKI). 

分 类 号:TP393.08[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象