ISSN 1000-1239 CN 11-1777/TP

计算机研究与发展 ›› 2018, Vol. 55 ›› Issue (10): 2244-2255.doi: 10.7544/issn1000-1239.2018.20180431

所属专题: 2018分布式安全与区块链技术研究专题

• 信息安全 • 上一篇    下一篇

基于共识机制的LEO低轨卫星网络区域合作认证协议

魏松杰1,李帅1,莫冰2,王佳贺1   

  1. 1(南京理工大学计算机科学与工程学院 南京 210094);2(南京理工大学机械工程学院 南京 210094) (swei@njust.edu.cn)
  • 出版日期: 2018-10-01
  • 基金资助: 
    国家自然科学基金项目(61472189);航天科技创新基金项目(F2016020013);空中交通管理系统与技术国家重点实验室开放课题(SKLATM201703)

Regional Cooperative Authentication Protocol for LEO Satellite Networks Based on Consensus Mechanism

Wei Songjie1, Li Shuai1, Mo Bing2, Wang Jiahe1   

  1. 1(School of Computer Science and Engineering, Nanjing University of Science and Technology, Nanjing 210094);2(School of Mechanical Engineering, Nanjing University of Science and Technology, Nanjing 210094)
  • Online: 2018-10-01

摘要: 接入认证是卫星网络安全的重要课题,在保证安全性的前提下,如何根据卫星网络的能力设计快速高效的认证方案是研究的热点之一.目前,针对LEO低轨卫星网络的接入认证方案研究主要集中在利用Hash等计算消耗低的方式减轻认证方案的计算消耗,而忽视了LEO低轨卫星网络动态拓扑以及链路切换频繁等特点.另一方面,区块链的共识机制一直以来是区块链领域的研究热点,通过共识机制,网络内节点以特定方式达成对某一交易的共识,完成其在全网的同步.借鉴于此,在总结LEO卫星网络的特点基础上,利用区域划分抽象LEO卫星动态拓扑的特点,同时利用区块链中的共识机制思想,在LEO卫星网络分布式环境下建立卫星间对用户认证的共识.此外,通过结合分布式Hash表与Hash锁定等方式以较低的存储和计算开销,实现了用户在LEO卫星网络中的快速切换,规避了原有的每一次认证都是全新认证的缺陷,提高了切换认证的性能.在安全性和性能上,将所提出协议同近年来的相关研究进行了对比分析,得出提出的协议具备安全高效的特点.最后,通过在OPNET网络仿真平台构建类铱星网络场景,对所提出协议进行了仿真.仿真结果表明:该协议的性能要明显优于现有卫星网络中的其他认证协议.

关键词: 共识机制, LEO卫星网络, 接入认证, 分布式Hash表, 区域划分

Abstract: Authentication is an important point of satellite network security. On the premise of security, it is one of the research hot spots that how to design efficient authentication scheme according to the ability of satellite network. Nowadays, researches about authentication scheme of LEO satellite network mainly focus on reducing the calculation consumption with low cost computation, like Hash operation, while ignoring the features of LEO satellite network like dynamic topology and frequent link switch etc. On the other hand, the consensus mechanism of blockchain is drawing more and more attention. Through the consensus mechanism, internal nodes of network reach a consensus and confirm the synchronization of transactions among the whole network. Based on these, a regional cooperative authentication protocol is proposed, which makes LEO network dynamic topology abstract with regional division and implements efficient handover authentication by consensus among satellites. Additionally, the proposed protocol reaches the fast switch by combining the method of distributed Hash table and Hash lock, which are light in computation and can avoid the defect that each authentication with normal authentication way is a brand new authentication phase. For the security and performance, a contrastive analysis to relevant researches in these years is made. At last, the protocol is simulated with a LEO network scenario similar to Iridium system upon OPNET network stimulation platform. And the results of simulation show that the performance of the protocol is obviously superior to existing authentication protocols in satellite network.

Key words: consensus mechanism, LEO satellite network, access authentication, distributed Hash table, regional division

中图分类号: