| This dissertation is based on the engineering realization of identity authentication protocol used in CMT (i.e. Composite Mobile Telecommunication) system, which is an IP-based cdma2000 mobile communication system developed by NDSC (i.e. National Digital Switch Center). Based on the abroad knowledge of authentication-related domains, the author's most attention is on the identity authentication mechanisms used in cdma2000 1x system and EV-DO system respectively. In addition, a deep analysis and reasoning is also given on the identity authentication mechanism faced to speech traffic of cdma2000 1x system.In order to keep the backward compatibility with the former CDMA system, there exist two kinds of identity authentication mechanism in cdma 2000 1x system. One is the mechanism used in North America, which is consistent with the former IS-95 system. The other is the new mechanism borrowed from the authentication mechanism made by 3GPP. The second mechanism is securer than the first one. For the first mechanism, combining with the reality need of the CMT project, the author studied the theory and main procedures of the mechanism. Then the enginerring design and realization of this mechanism is also given. For the moment, the software codes of the mechanism have been finished and passed function test. And for the second mechanism, the author mainly studied the procedures and characteristics. Besides, a formal analysis of the second mechanism using AUTLOG logic is also given.With provision for the daily increasing applications of packet data service and the inevitable trend of combination of MIP (i.e. Mobile IP) technology and mobile communication network, the author as well as did some research work in the identity authentication of EV-DO system. Comparing with the mechanism used in cdma2000 lx system, the mechanism used in EV-DO system is much more complex. The mechanism has two times of authentication. The first time, AN (i.e. Access Network) will authenticate a terminal. When a terminal wants to visit the serve resources provided by the exterior IP network, it is also needed for the IP network to authenticate the terminal. According to the different kind of packet data service, the terminal authentication mechanisms are respectively studied for SIP (i.e. Simple IP) access and MIP access. The research work is not very sufficient because of the mechanism involved in a few complex issues.Analysis of security protocols including the authentication protocols is a research hotspot and also a nodus. Analysis of the authentication mechanism in cdma2000 and EV-DO is also given in this dissertation. |
PDF Full Text Request