Authentication method in SWIM based on improved Diameter/EAP-MD5

Zhi-jun WU; Ting ZHAO; Jin LEI

doi:10.3969/j.issn.1000-436x.2014.08.001

您当前的位置：

首页 >

文章列表页 >

Authentication method in SWIM based on improved Diameter/EAP-MD5

Academic paper | 更新时间：2024-10-11

- Authentication method in SWIM based on improved Diameter/EAP-MD5
- Journal on Communications Vol. 35, Issue 8, Pages: 1-7(2014)
- 作者机构：
  
  中国民航大学天津市智能信号处理重点实验室，天津 300300
- 作者简介：
- 基金信息：
- DOI：10.3969/j.issn.1000-436x.2014.08.001
  CLC： TP393
- Online First：2014-08，
  
  Published：25 August 2014
- 稿件说明：
移动端阅览
Zhi-jun WU, Ting ZHAO, Jin LEI. Authentication method in SWIM based on improved Diameter/EAP-MD5[J]. Journal on Communications, 2014, 35(8): 1-7.
DOI：

Zhi-jun WU, Ting ZHAO, Jin LEI. Authentication method in SWIM based on improved Diameter/EAP-MD5[J]. Journal on Communications, 2014, 35(8): 1-7. DOI： 10.3969/j.issn.1000-436x.2014.08.001.

摘要

广域信息管理(SWIM

system wide information management)采用面向服务的体系结构(SOA

service oriented architecture)提供民航信息交互与数据共享功能。在分析SWIM体系结构和基于Diameter协议的EAP-MD5应用子协议基础上，给出标准Diameter/EAP-MD5认证过程中存在的安全隐患，改进了EAP-MD5认证协议，提出基于改进的Diameter/EAP-MD5协议的SWIM用户身份认证方法，研究基于Diameter的SWIM认证服务，并在模拟的SWIM环境中对改进方法进行仿真实验和安全性分析。实验结果表明，改进的Diameter/EAP-MD5认证方法可在计算性能相当的前提下提高SWIM认证系统的安全性，为SWIM安全服务框架的构建提供保障。

Abstract

System wide information management (SWIM) provides the civil aviation information exchange and data sharing function by using service-oriented architecture (SOA). Based on the analysis of SWIM architecture and the sub-protocol EAP-MD5 of Diameter

the security vulnerable of authenticating process in standard Diameter/EAP-MD5 is explored

the EAP-MD5 authentication protocol is improved

and the SWIM authentication service based on Diameter is studied

then the SWIM authentication method based on improved Diameter/EAP-MD5 protocol is proposed. Experi-ments on the security of SWIM authentication service based on Diameter are performed in SWIM simulation environ-ment

results show that the improved Diameter/EAP-MD5 authentication method can enhance the security of SWIM au-thentication and guarantee SWIM security service.

关键词

Keywords

references

DARIO D C , ANTONIO S , GEORG T . SWIM- a next generation ATM information bus-the SWIM-SUIT prototype [A ] . 2010 14th IEEE International Enterprise Distributed Object Computing Conference Workshops (EDOCW) [C ] . 2010 . 41 - 46 .

吕小平，齐鸣 . 浅谈SWIM [J ] . 民航管理， 2009 ,( 5 ): 68 - 69 .

LV X P , QI M . A brief discussion of SWIM [J ] . Civil Aviation Man-agement , 2009 ,( 5 ): 68 - 69 .

BOB S . Security architecture for system wide information manage-ment [J ] . The 24th 2005 Digital Avionics Systems Conference (DASC 2005) [C ] . 2005 .

BOB S . System-wide information management (SWIM) demonstra-tion security architecture [J ] . 2006 IEEE/AIAA 25th Digital Avionics Systems Conference [C ] . 2006 . 1 - 12 .

Federal Aviation Administration . System Wide Information Manage-ment (SWIM) eXtensible Markup Language (XML) Gateway Re-quirements [S ] . 2009 .

International Civil Aviation Organization . Web service security stan-dards [A ] . Aeronautical Telecommunication Network Implementation Coordination Group-Eighth Working Group Meeting [C ] . Christchurch New Zealand , 2010 .

邱锡鹏，刘海鹏 . Diameter 协议研究 [J ] . 计算机科学， 2013 , 30 ( 2 ): 75 - 78 .

QIU X P , LIU H P . Research on diameter protocols [J ] . Computer Sci-ence , 2013 , 30 ( 2 ): 75 - 78 .

IETF RFC3588. Diameter Base Protocol [S ] . 2003 .

IETF RFC3748. Extensible Authentication Protocol(EAP) [S ] . 2004 .

IETF RFC 4072, Diameter Extensible Authentication Protocol(EAP) Application [S ] . 2005 .

陈凤其，姚国祥 . 一种基于Hash函数的EAP认证协议 [J ] . 计算机系统应用， 2010 , 19 ( 6 ): 74 - 77 .

CHEN F Q , YAO G X . A hash-based EAP authentication protocl [J ] . Computer Systems ＆ Applications , 2010 , 19 ( 6 ): 74 - 77 .

陈世伟，金晨辉 . MD5碰撞攻击中的充要条件集 [J ] . 软件学报， 2009 , 20 ( 6 ): 1617 - 1624 .

CHEN S W , JIN C H . Set of necessary and sufficient conditions in collision attacks on MD5 [J ] . Journal of Software , 2009 , 20 ( 6 ): 1617 - 1624 .

赵志新，祝跃飞，梁立明 . 无线局域网隧道认证协议 PEAP 的分析与改进 [J ] . 信息工程大学学报， 2005 , 6 ( 3 ): 52 - 55 .

ZHAO Z X , ZHU Y F , LIANG L M The analysis and mend of PEAP protocol in WLAN [J ] . Journal of Information Engineering University , 2005 , 6 ( 3 ): 52 - 55 .

吉晓东 . 支持身份隐藏的EAP-PSK协议改进 [J ] . 南通大学学报(自然科学版) , 2007 , 6 ( 2 ): 74 - 77 .

JI X D Improvement of EAP-PSK protocol enabling identity pri-vacy [J ] . Journal of Nantong University (Natural Science) , 2007 , 6 ( 2 ): 74 - 77 .

王志中 . MD5算法在口令认证中的安全性改进 [J ] . 电脑知识与技术， 2012 , 8 ( 2 ): 296 - 297 .

WANG Z Z Security improvement of MD5 algorithm in password authentication [J ] . JComputer Knowledge and Technology , 2012 , 8 ( 2 ): 296 - 297 .

Views

706

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

5-pass zero-knowledge identity authentication scheme based on matrix completion problem

New entity authentication and access control scheme in satellite communication network

Authentication scheme for multi-cloud environment based on smart card

Keystroke features recognition based on stable linear discriminant analysis

Mutual authentication scheme based on the TPM cloud computing platform

Related Author

Huanguo ZHANG

Yan GUO

Xinwei CAI

Houzhen WANG

Liehuang ZHU

Long WANG

Jiasheng LI

Chuan ZHANG

Related Institution

School of Cyber Science and Engineering, Wuhan University

State Key Laboratory of Cryptology

Computer Science,Beijing Institute of Technology

Army

College of Information Science and Technology, Jinan University

AI问答

⁰