KR100917392B1 - IPv6 네트워크에서 인접 노드의 탐색 메시지를송수신하는 방법 - Google Patents
IPv6 네트워크에서 인접 노드의 탐색 메시지를송수신하는 방법 Download PDFInfo
- Publication number
- KR100917392B1 KR100917392B1 KR1020070108466A KR20070108466A KR100917392B1 KR 100917392 B1 KR100917392 B1 KR 100917392B1 KR 1020070108466 A KR1020070108466 A KR 1020070108466A KR 20070108466 A KR20070108466 A KR 20070108466A KR 100917392 B1 KR100917392 B1 KR 100917392B1
- Authority
- KR
- South Korea
- Prior art keywords
- node
- message
- option
- send
- response message
- Prior art date
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/0618—Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
- H04L9/0631—Substitution permutation network [SPN], i.e. cipher composed of a number of stages or rounds each involving linear and nonlinear transformations, e.g. AES algorithms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/30—Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
- H04L9/3006—Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy underlying computational problems or public-key parameters
- H04L9/302—Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy underlying computational problems or public-key parameters involving the integer factorization problem, e.g. RSA or quadratic sieve [QS] schemes
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
- H04L9/3249—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures using RSA or related signature schemes, e.g. Rabin scheme
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computing Systems (AREA)
- Theoretical Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (5)
- 제1 노드와 제2 노드가 서로 인접하고 있는 IPv6 네트워크에서, 상기 제1 노드로부터 수신한 SEND(Secure Neighbor discovery) 요청 메시지에 응답하여 상기 제2 노드로부터 상기 제1 노드로 SEND 응답 메시지를 송신하는 방법에 있어서,상기 SEND 요청 메시지에 포함되어 있는 CGA(Cryptographically Generated Address) 옵션을 사용하여 상기 제1 노드의 공개키를 확인하는 단계;소정 길이의 랜덤 값을 가지는 대칭키를 생성하고 상기 생성한 대칭키를 사용하여 상기 제1 노드를 상기 제2 노드에 광고하기 위한 메시지를 암호화하는 단계;상기 생성한 대칭키를 상기 제1 노드의 공개키로 암호화하는 단계; 및상기 암호화된 광고 메시지와 대칭키를 구비하는 SEND 응답 메시지를 생성하여 상기 제1 노드로 송신하는 단계를 포함하는 응답 메시지의 송신 방법.
- 제 1 항에 있어서, 상기 SEND 요청 메시지는상기 제1 노드에 인접하고 있는 제2 노드로 접속을 요청하는 접속 메시지;상기 요청 메시지의 무결성을 확인하기 위한 RSA 서명 옵션; 및상기 요청 메시지의 부인 방지를 위한 CGA 옵션을 포함하는 응답 메시지의 송신 방법.
- 제 2 항에 있어서, 상기 응답 메시지는상기 요청 메시지를 수신하는 경우, 상기 제2 노드를 상기 제1 노드로 광고하기 위한 광고 메시지;상기 응답 메시지의 무결성을 확인하기 위한 RSA 서명 옵션;상기 응답 메시지의 부인 방지를 위한 CGA 옵션; 및상기 제1 노드의 공개키로 암호화된 대칭키를 저장하고 있는 암호 옵션을 포함하는 응답 메시지의 송신 방법.
- 제 3 항에 있어서, 상기 대칭키는128비트의 랜덤 값을 가지도록 생성되는 응답 메시지의 송신 방법.
- 제 3 항에 있어서,상기 응답 메시지는 상기 대칭키를 사용하여 AES 알고리즘으로 암호화되며,상기 대칭키는 상기 제1 노드의 공캐키를 사용하여 RSA 알고리즘으로 암호화되는 응답 메시지의 송신 방법.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020070108466A KR100917392B1 (ko) | 2007-10-26 | 2007-10-26 | IPv6 네트워크에서 인접 노드의 탐색 메시지를송수신하는 방법 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020070108466A KR100917392B1 (ko) | 2007-10-26 | 2007-10-26 | IPv6 네트워크에서 인접 노드의 탐색 메시지를송수신하는 방법 |
Publications (2)
Publication Number | Publication Date |
---|---|
KR20090042607A KR20090042607A (ko) | 2009-04-30 |
KR100917392B1 true KR100917392B1 (ko) | 2009-09-17 |
Family
ID=40765310
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020070108466A KR100917392B1 (ko) | 2007-10-26 | 2007-10-26 | IPv6 네트워크에서 인접 노드의 탐색 메시지를송수신하는 방법 |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR100917392B1 (ko) |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR101034380B1 (ko) * | 2009-05-20 | 2011-05-16 | 강릉원주대학교산학협력단 | Nan에서의 이웃 검색을 이용한 보안 시스템 및 방법 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2006119358A2 (en) | 2005-05-02 | 2006-11-09 | Ntt Docomo Inc. | Secure address proxying using multi-key cryptographically generated addresses |
KR100651715B1 (ko) | 2004-10-07 | 2006-12-01 | 한국전자통신연구원 | 차세대 인터넷에서 자동으로 주소를 생성하고 수락하는방법 및 이를 위한 데이터 구조 |
JP2007000709A (ja) * | 2005-06-21 | 2007-01-11 | Honda Motor Co Ltd | メタルハニカム触媒担体 |
US20070036119A1 (en) | 2005-08-15 | 2007-02-15 | Wassim Haddad | Routing advertisement authentication in fast router discovery |
-
2007
- 2007-10-26 KR KR1020070108466A patent/KR100917392B1/ko active IP Right Grant
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR100651715B1 (ko) | 2004-10-07 | 2006-12-01 | 한국전자통신연구원 | 차세대 인터넷에서 자동으로 주소를 생성하고 수락하는방법 및 이를 위한 데이터 구조 |
WO2006119358A2 (en) | 2005-05-02 | 2006-11-09 | Ntt Docomo Inc. | Secure address proxying using multi-key cryptographically generated addresses |
JP2007000709A (ja) * | 2005-06-21 | 2007-01-11 | Honda Motor Co Ltd | メタルハニカム触媒担体 |
US20070036119A1 (en) | 2005-08-15 | 2007-02-15 | Wassim Haddad | Routing advertisement authentication in fast router discovery |
Non-Patent Citations (1)
Title |
---|
draft(2007. 07. 09) |
Also Published As
Publication number | Publication date |
---|---|
KR20090042607A (ko) | 2009-04-30 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US8098823B2 (en) | Multi-key cryptographically generated address | |
JP4464963B2 (ja) | 暗号で保護されたプレフィクスを用いたインターネットプロトコルネットワーク用のロケーションプライバシー | |
US7774594B2 (en) | Method and system for providing strong security in insecure networks | |
US7058181B2 (en) | Wireless bridge for roaming in network environment | |
JP5646541B2 (ja) | Id基盤の暗号化方法及びその装置 | |
US8843751B2 (en) | IP address delegation | |
US7949876B2 (en) | Method and nodes for optimized and secure communication between routers and hosts | |
US20040240669A1 (en) | Securing neighbor discovery using address based keys | |
US20060182124A1 (en) | Cipher Key Exchange Methodology | |
KR20050078434A (ko) | 아이피 브이 식스 네트워크에서 인증을 처리하는 방법 및그 장치 | |
US7243368B2 (en) | Access control system and method for a networked computer system | |
US20100106972A1 (en) | Signalling delegation in a moving network | |
CN110832806B (zh) | 针对面向身份的网络的基于id的数据面安全 | |
He et al. | Pavi: Bootstrapping accountability and privacy to ipv6 internet | |
WO2017008556A1 (zh) | 一种无线接入点和管理平台鉴权的方法和装置 | |
WO2022174739A1 (zh) | 报文发送方法、签名信息的生成方法及设备 | |
KR100917392B1 (ko) | IPv6 네트워크에서 인접 노드의 탐색 메시지를송수신하는 방법 | |
Kempf et al. | Ip address authorization for secure address proxying using multi-key cgas and ring signatures | |
JP2007166552A (ja) | 通信装置及び暗号通信方法 | |
He et al. | SAV6: A Novel Inter-AS Source Address Validation Protocol for IPv6 Internet | |
Bauer et al. | Securing dynamic home agent address discovery with cryptographically generated addresses and RSA signatures | |
KR20220107431A (ko) | 하드웨어 보안 모듈을 이용한 인증 서버와 디바이스 간의 상호 인증 방법 및 이를 이용한 장치 | |
Choi et al. | Enhanced SEND Protocol for Secure Data Transmission in Mobile IPv6 Environment | |
Katsaros et al. | Protecting future mobile access networks | |
Kim et al. | Trusted Mobility Support Protocol in the Mobile IPv6 Networks |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A201 | Request for examination | ||
E701 | Decision to grant or registration of patent right | ||
GRNT | Written decision to grant | ||
FPAY | Annual fee payment |
Payment date: 20120911 Year of fee payment: 4 |
|
FPAY | Annual fee payment |
Payment date: 20130910 Year of fee payment: 5 |
|
FPAY | Annual fee payment |
Payment date: 20140820 Year of fee payment: 6 |
|
FPAY | Annual fee payment |
Payment date: 20150817 Year of fee payment: 7 |
|
FPAY | Annual fee payment |
Payment date: 20160823 Year of fee payment: 8 |
|
FPAY | Annual fee payment |
Payment date: 20190625 Year of fee payment: 11 |