| In the traditional network architecture, the IP address is used as the identity of the host, and the location of the host is identified, that is to say, the IP address has the problem of semantic overloading. With the rapid development of mobile communication network, the problem of IP address semantic overload is becoming more and more unsuitable for mobile communication networks, especially in mobility, multi-homing and security. The idea of identity and location separation is widely used to solve the problem of IP address semantic overload.UIP(User Identity Protocol) scheme is a solution which is based on identity and location separation. This scheme adds the UIP layer between the transport layer and the network layer of host protocol stack to realize the function of mapping and conversion between identification of identity and location. And this scheme is suitable for 5G mobile communication network. In addition, the researchers proposed an access authentication method for the UIP scenario, which can form a complete key hierarchy.In the UIP scene, the behaviors of inter-domain handover and password update will occur frequently, and it is urgent to put forward relevant security protocols to ensure the safety and efficiency of the above work. However, the traditional methods of mobile management and password update cannot meet the business needs and security needs of UIP scene. For example, in the mobile management approach, there are some relevant researches that the 802.11 r protocol proposed by IEEE faces Do S attacks and AP attacks. In addition, the traditional method can only ensure the security of the password update process, and cannot meet the requirements of the UIP scene password update required with the key update.In order to solve these problems, this paper has carried out in-depth study on the UIP scheme and the access authentication technology in UIP scenario. The routing process, protocol steps, key level and other aspects of the UIP scheme are studied. A comparative analysis of the traditional mobile management technology and the password update technology is carried out, and the scheme of the mobile management scheme for UIP scenarios is proposed.Specifically, the main work of this paper includes:1. A method of mobility management in UIP scenarios is proposed, which is complementary to the access authentication method in UIP scenarios. In this scheme, the authentication terminal is initiated to initiating the switch trigger message in first, and the authentication and key agreement between the entities is implemented in the 1.5 round, which protects the authentication side from the Do S attack.2. A new password update method in UIP scenario is proposed, which is combined with the access authentication process. In the same time, the access authentication process is completed, and the user is not required to log in after the password is updated. In addition, the update process of the session key is very short. After password update completed, the update of the key level is completed.3. The proposed method of mobile management and password update is analyzed in safety. The prototype of the UIP scene and related methods are realized and the experiment environment is deployed. Experiment result show that the method proposed in this paper is highly feasible. |
PDF Full Text Request