JP3805329B2 - イーサネット(登録商標)受動型光加入者ネットワークシステムでのセキュリティデータ伝送方法 - Google Patents
イーサネット(登録商標)受動型光加入者ネットワークシステムでのセキュリティデータ伝送方法 Download PDFInfo
- Publication number
- JP3805329B2 JP3805329B2 JP2003287843A JP2003287843A JP3805329B2 JP 3805329 B2 JP3805329 B2 JP 3805329B2 JP 2003287843 A JP2003287843 A JP 2003287843A JP 2003287843 A JP2003287843 A JP 2003287843A JP 3805329 B2 JP3805329 B2 JP 3805329B2
- Authority
- JP
- Japan
- Prior art keywords
- field
- ethernet
- subscriber network
- frame
- security
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000000034 method Methods 0.000 title claims description 30
- 230000003287 optical effect Effects 0.000 title claims description 28
- 230000005540 biological transmission Effects 0.000 title description 20
- 238000004891 communication Methods 0.000 claims description 16
- 230000008569 process Effects 0.000 description 7
- 238000012545 processing Methods 0.000 description 7
- 238000005516 engineering process Methods 0.000 description 6
- 238000010586 diagram Methods 0.000 description 4
- 230000007246 mechanism Effects 0.000 description 3
- 238000005204 segregation Methods 0.000 description 3
- 230000007547 defect Effects 0.000 description 2
- 238000012937 correction Methods 0.000 description 1
- 230000002708 enhancing effect Effects 0.000 description 1
- 239000012634 fragment Substances 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000004044 response Effects 0.000 description 1
- 238000010187 selection method Methods 0.000 description 1
- 230000001960 triggered effect Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/02—Details
- H04L12/22—Arrangements for preventing the taking of data from a data transmission channel without authorisation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0272—Virtual private networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/40—Bus networks
- H04L12/407—Bus networks with decentralised control
- H04L12/413—Bus networks with decentralised control with random access, e.g. carrier-sense multiple-access with collision detection [CSMA-CD]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/065—Network architectures or network communication protocols for network security for supporting key management in a packet data network for group communications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/104—Grouping of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/12—Applying verification of the received information
- H04L63/123—Applying verification of the received information received data contents, e.g. message integrity
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q11/00—Selecting arrangements for multiplex systems
- H04Q11/0001—Selecting arrangements for multiplex systems using optical switching
- H04Q11/0062—Network aspects
- H04Q11/0067—Provisions for optical access or distribution networks, e.g. Gigabit Ethernet Passive Optical Network (GE-PON), ATM-based Passive Optical Network (A-PON), PON-Ring
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q11/00—Selecting arrangements for multiplex systems
- H04Q11/0001—Selecting arrangements for multiplex systems using optical switching
- H04Q11/0062—Network aspects
- H04Q11/0066—Provisions for optical burst or packet networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q11/00—Selecting arrangements for multiplex systems
- H04Q11/0001—Selecting arrangements for multiplex systems using optical switching
- H04Q11/0062—Network aspects
- H04Q11/0071—Provisions for the electrical-optical layer interface
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q11/00—Selecting arrangements for multiplex systems
- H04Q11/0001—Selecting arrangements for multiplex systems using optical switching
- H04Q11/0062—Network aspects
- H04Q2011/0084—Quality of service aspects
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Small-Scale Networks (AREA)
Description
202 DA(目的地アドレス)フィールド
204 SA(ソースアドレス)フィールド
206 クリアPONタグヘッダフィールド
208 プロテクトタグヘッダフィールド
210 PDU(パケットデータユニット)フィールド
212 PADフィールド
214 ICV(完全性チェック値)フィールド
216 FCS(フレームチェックシーケンス)フィールド
300 デジグネータフィールド
302 PAID(PON関連ID)フィールド
304 オプションフィールド(MDF)
310 グループビット
312 LLIDフィールド
314 SIDフィールド
400−1,400−2
402 MAC(マック)クライアント階層
404 暗号化階層
406 MAC階層
408 RS階層
410 PCS階層
412 PMA階層
414 PMD階層
420 MPCPワーク階層
Claims (2)
- 1つの光線路終端装置と接続された光分配装置と該分配装置と接続された複数の光加入者ネットワーク装置を有し、各光加入者ネットワーク装置が複数の使用者と接続されたイーサネット(登録商標)受動型光加入者ネットワークシステムでの前記光線路終端装置と目的地使用者間にセキュリティデータを伝送するセキュリティ通信方法であって、
前記光線路終端装置が、当該光線路終端装置と前記光加入者ネットワーク装置との間でセキュリティ通信を遂行するために、
目的地アドレスを示すDAフィールドと、発信地アドレスを示すSAフィールドと、論理リンクIDを含むクリア受動型光加入者網タグヘッダーフィールドと、PDUフィールドと、メッセージの完全性をチェックするためのICVフィールドと、FCSチェックのためのFCSフィールドと、を含むイーサネットフレームを生成するステップと、
生成された前記イーサネットフレームを伝送するステップとを含み、
前記クリア受動型光加入者網タグヘッダーフィールドは、
前記イーサネットフレームが特殊タグフレームであることを示すための、2バイトの予備LSAPである16進数の‘ox0A0A’と1バイトのUICの値‘ox03’とを結合した値が指定されるデジグネータフィールドと、
各ONUを区別してピアツーピア通信を可能にするとともに、各ONUに対するサービスをユーザーグループ別に区別して、サービス差別又はトラヒック差別を可能にする識別子としての、3ビットのグループビットの値‘101’、17ビットの論理リンクIDフィールド、及び12ビットのSIDフィールドと、から構成されるPAIDフィールドと、を含むことを特徴とするセキュリティ通信方法。 - 前記PAIDフィールドは、管理情報ベースに関する情報及び関連プロトコル情報が格納された管理情報フィールドをさらに含むことを特徴とする請求項1に記載のセキュリティ通信方法。
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020020046600A KR100594153B1 (ko) | 2002-08-07 | 2002-08-07 | 점대다 토폴로지의 네트워크에서 논리링크의 형성과 그보안 통신 방법 |
Publications (2)
Publication Number | Publication Date |
---|---|
JP2004072775A JP2004072775A (ja) | 2004-03-04 |
JP3805329B2 true JP3805329B2 (ja) | 2006-08-02 |
Family
ID=31492819
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
JP2003287843A Expired - Fee Related JP3805329B2 (ja) | 2002-08-07 | 2003-08-06 | イーサネット(登録商標)受動型光加入者ネットワークシステムでのセキュリティデータ伝送方法 |
Country Status (3)
Country | Link |
---|---|
US (1) | US20040028409A1 (ja) |
JP (1) | JP3805329B2 (ja) |
KR (1) | KR100594153B1 (ja) |
Families Citing this family (28)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP4307381B2 (ja) | 2002-09-13 | 2009-08-05 | ピーエムシー−シエラ イスラエル リミテッド | 複数のエンティティーを有するネットワークユニットを含むイーサネット(登録商標)パッシブ光ネットワークの操作方法 |
KR100933167B1 (ko) * | 2002-10-02 | 2009-12-21 | 삼성전자주식회사 | 트리 구조 네트워크 상에서의 인증과 프라이버시 보장을위한 전송 방법 |
KR100456675B1 (ko) * | 2002-11-26 | 2004-11-10 | 한국전자통신연구원 | 이더넷 pon의 매체접근제어 계층에서의 이더넷 데이터처리방법 및 장치 |
KR100448635B1 (ko) * | 2002-11-27 | 2004-09-13 | 한국전자통신연구원 | 이더넷 기반의 수동 광통신망에서의 통신 노드 시스템,제어 노드 시스템, 및 이를 이용한 통신 시스템 |
US8862866B2 (en) | 2003-07-07 | 2014-10-14 | Certicom Corp. | Method and apparatus for providing an adaptable security level in an electronic communication |
DE102004040312B4 (de) | 2003-08-19 | 2018-11-15 | Certicom Corp. | Verfahren und Vorrichtung zum Synchronisieren einer anspassbaren Sicherheitsstufe bei einer elektronischen Datenübertragung |
US6967949B2 (en) * | 2003-09-15 | 2005-11-22 | Teknovus, Inc. | Method and apparatus for forwarding packets in an ethernet passive optical network |
US7349537B2 (en) * | 2004-03-11 | 2008-03-25 | Teknovus, Inc. | Method for data encryption in an ethernet passive optical network |
KR100608906B1 (ko) * | 2004-12-10 | 2006-08-08 | 한국전자통신연구원 | Epon에서의 링크 보안을 위한 보안 모듈 발견 방법 |
US7636354B2 (en) * | 2004-12-11 | 2009-12-22 | Alcatel Lucent | Deriving passive optical network port identifiers |
US7797745B2 (en) * | 2004-12-22 | 2010-09-14 | Electronics And Telecommunications Research Institute | MAC security entity for link security entity and transmitting and receiving method therefor |
KR100723832B1 (ko) * | 2004-12-22 | 2007-05-31 | 한국전자통신연구원 | 링크 보안을 위한 매체 접근 제어 보안 장치 및 송수신방법 |
JP4693518B2 (ja) * | 2005-06-22 | 2011-06-01 | 三菱電機株式会社 | マルチキャスト通信装置及びこれを用いたponシステム |
US8086872B2 (en) * | 2005-12-08 | 2011-12-27 | Electronics And Telecommunications Research Institute | Method for setting security channel based on MPCP between OLT and ONUs in EPON, and MPCP message structure for controlling frame transmission |
EP1830517B1 (en) * | 2006-03-03 | 2009-08-12 | Nokia Siemens Networks Gmbh & Co. Kg | A method, communication system, central and peripheral communication unit for secure packet oriented transfer of information |
CA2941216C (en) | 2006-04-13 | 2018-11-27 | Certicom Corp. | Method and apparatus for providing an adaptable security level in an electronic communication |
KR100889729B1 (ko) * | 2006-11-30 | 2009-03-24 | 한국전자통신연구원 | 이더넷 수동형 광가입자망에서 멀티캐스트 및 가상랜서비스를 효율적으로 제공하기 위한 프레임 처리 방법 |
US8582966B2 (en) * | 2007-09-10 | 2013-11-12 | Cortina Systems, Inc. | Method and apparatus for protection switching in passive optical network |
US8335316B2 (en) * | 2008-04-21 | 2012-12-18 | Broadcom Corporation | Method and apparatus for data privacy in passive optical networks |
CN102148682B (zh) * | 2010-02-08 | 2016-02-10 | 中兴通讯股份有限公司 | 一种对发光异常光网络单元正确定位的方法及系统 |
CN103138924B (zh) * | 2011-11-24 | 2017-12-08 | 中兴通讯股份有限公司 | 一种epon系统中加密数据帧解密方法及装置 |
US9363016B2 (en) * | 2011-12-02 | 2016-06-07 | Futurewei Technologies, Inc. | Apparatus and method for reducing traffic on a unified optical and coaxial network |
CN103188716B (zh) * | 2011-12-29 | 2018-08-03 | 中兴通讯股份有限公司 | Rudp链路故障定位方法及装置 |
US20130315238A1 (en) * | 2012-05-25 | 2013-11-28 | Broadcom Corporation | Method and Apparatus for Extending Multipoint Control Protocols to Mixed Media Access Systems |
US10419401B2 (en) * | 2016-01-08 | 2019-09-17 | Capital One Services, Llc | Methods and systems for securing data in the public cloud |
US10841670B2 (en) * | 2018-02-13 | 2020-11-17 | Juniper Networks, Inc. | Methods and apparatus for consistency check in disaggregated dense wavelength-division multiplexing (DWDM) systems |
US10887289B2 (en) * | 2018-08-21 | 2021-01-05 | Fujitsu Limited | Encryption in optical transport networks using multiple randomly selected keys |
WO2021093185A1 (en) * | 2020-01-31 | 2021-05-20 | Zte Corporation | Fast detection and recovery of a rogue optical network unit using a reset signal |
Family Cites Families (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4980913A (en) * | 1988-04-19 | 1990-12-25 | Vindicator Corporation | Security system network |
IL102394A (en) * | 1992-07-02 | 1996-08-04 | Lannet Data Communications Ltd | Method and apparatus for secure data transmission |
US5473696A (en) * | 1993-11-05 | 1995-12-05 | At&T Corp. | Method and apparatus for combined encryption and scrambling of information on a shared medium network |
KR0150258B1 (ko) * | 1994-12-14 | 1998-10-15 | 양승택 | 수동광통신망의 버스트 데이타 전송장치 |
KR100281402B1 (ko) * | 1998-11-26 | 2001-02-01 | 정선종 | 비동기 전송 모드-폰 시스템의 광 선로 종단장치에서의 하향메시지 할당 방법 |
JP3116938B2 (ja) * | 1999-02-26 | 2000-12-11 | 日本電気株式会社 | Atm−ponシステムにおけるontの暗号化制御装置及びその制御方法。 |
US20030007724A1 (en) * | 2001-07-05 | 2003-01-09 | Broadcom Corporation | System, method, and computer program product for optimizing video service in ethernet-based fiber optic TDMA networks |
US7411980B2 (en) * | 2001-12-14 | 2008-08-12 | Broadcom Corporation | Filtering and forwarding frames within an optical network |
KR100640394B1 (ko) * | 2002-09-19 | 2006-10-30 | 삼성전자주식회사 | 이더넷 수동형광가입자망에서 멀티캐스트 llid 생성방법 |
US8027473B2 (en) * | 2003-01-13 | 2011-09-27 | Conexant Systems, Inc. | System and method for improved data protection in PONs |
KR100523357B1 (ko) * | 2003-07-09 | 2005-10-25 | 한국전자통신연구원 | 이더넷 기반 수동형 광네트워크의 보안서비스 제공을 위한키관리 장치 및 방법 |
-
2002
- 2002-08-07 KR KR1020020046600A patent/KR100594153B1/ko not_active IP Right Cessation
-
2003
- 2003-08-05 US US10/634,700 patent/US20040028409A1/en not_active Abandoned
- 2003-08-06 JP JP2003287843A patent/JP3805329B2/ja not_active Expired - Fee Related
Also Published As
Publication number | Publication date |
---|---|
KR20040013601A (ko) | 2004-02-14 |
US20040028409A1 (en) | 2004-02-12 |
JP2004072775A (ja) | 2004-03-04 |
KR100594153B1 (ko) | 2006-06-28 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP3805329B2 (ja) | イーサネット(登録商標)受動型光加入者ネットワークシステムでのセキュリティデータ伝送方法 | |
US7797745B2 (en) | MAC security entity for link security entity and transmitting and receiving method therefor | |
JP3774455B2 (ja) | イーサネット(登録商標)受動型光加入者網システムにおけるデータ転送方法 | |
US8181014B2 (en) | Method and apparatus for protecting the routing of data packets | |
US8442229B2 (en) | Method and apparatus for providing security in a passive optical network | |
US7979693B2 (en) | Relay apparatus for encrypting and relaying a frame | |
US8335316B2 (en) | Method and apparatus for data privacy in passive optical networks | |
JP2008104040A (ja) | 共通鍵生成装置および共通鍵生成方法 | |
JP5467574B2 (ja) | EPON(1GEPONと10GEPON)ネットワークにおけるIEEE802.1AEと802.1afセキュリティの実行方法 | |
US8576845B2 (en) | Method and apparatus for avoiding unwanted data packets | |
US20050175183A1 (en) | Method and architecture for secure transmission of data within optical switched networks | |
CN111010274B (zh) | 一种安全低开销的SRv6实现方法 | |
JPWO2007135858A1 (ja) | 光通信システム、局側装置および加入者側装置 | |
WO2011017986A1 (zh) | 一种无源光网络中ploam消息的传输方法及组装方法 | |
WO2013104987A1 (en) | Method for authenticating identity of onu in gpon network | |
EP1830517B1 (en) | A method, communication system, central and peripheral communication unit for secure packet oriented transfer of information | |
Hajduczenia et al. | On EPON security issues | |
KR100594023B1 (ko) | 기가비트 이더넷 수동형 광 가입자망에서의 암호화 방법 | |
CN115473729B (zh) | 数据传输方法、网关、sdn控制器及存储介质 | |
US7376828B1 (en) | Method and apparatus for using incompletely trusted service provider point-to-point networks | |
Kim et al. | The implementation of the link security module in an EPON access network | |
JP2005354504A (ja) | 光加入者線端局装置、光加入者線終端装置およびその通信方法 | |
JP2006245778A (ja) | 通信装置、通信方法、およびプログラム | |
JP2013072965A (ja) | 共通鍵暗号通信システム |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
RD03 | Notification of appointment of power of attorney |
Free format text: JAPANESE INTERMEDIATE CODE: A7423 Effective date: 20040713 |
|
RD04 | Notification of resignation of power of attorney |
Free format text: JAPANESE INTERMEDIATE CODE: A7424 Effective date: 20040803 |
|
A977 | Report on retrieval |
Free format text: JAPANESE INTERMEDIATE CODE: A971007 Effective date: 20051219 |
|
A131 | Notification of reasons for refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A131 Effective date: 20060110 |
|
A521 | Written amendment |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20060410 |
|
TRDD | Decision of grant or rejection written | ||
A01 | Written decision to grant a patent or to grant a registration (utility model) |
Free format text: JAPANESE INTERMEDIATE CODE: A01 Effective date: 20060502 |
|
A61 | First payment of annual fees (during grant procedure) |
Free format text: JAPANESE INTERMEDIATE CODE: A61 Effective date: 20060509 |
|
R150 | Certificate of patent or registration of utility model |
Free format text: JAPANESE INTERMEDIATE CODE: R150 |
|
FPAY | Renewal fee payment (event date is renewal date of database) |
Free format text: PAYMENT UNTIL: 20100519 Year of fee payment: 4 |
|
FPAY | Renewal fee payment (event date is renewal date of database) |
Free format text: PAYMENT UNTIL: 20110519 Year of fee payment: 5 |
|
FPAY | Renewal fee payment (event date is renewal date of database) |
Free format text: PAYMENT UNTIL: 20120519 Year of fee payment: 6 |
|
FPAY | Renewal fee payment (event date is renewal date of database) |
Free format text: PAYMENT UNTIL: 20130519 Year of fee payment: 7 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
LAPS | Cancellation because of no payment of annual fees |