TWI301027B - A mobile ip authentication method with aaa and key cache and a recordable medium thereof - Google Patents

A mobile ip authentication method with aaa and key cache and a recordable medium thereof Download PDF

Info

Publication number
TWI301027B
TWI301027B TW94112987A TW94112987A TWI301027B TW I301027 B TWI301027 B TW I301027B TW 94112987 A TW94112987 A TW 94112987A TW 94112987 A TW94112987 A TW 94112987A TW I301027 B TWI301027 B TW I301027B
Authority
TW
Taiwan
Prior art keywords
group
authentication
certification
replacement
key
Prior art date
Application number
TW94112987A
Other languages
Chinese (zh)
Other versions
TW200638721A (en
Inventor
Phone Lin
Hung Chi Hsu
Shin Ming Cheng
wei hao Chen
Ken Li Chen
Original Assignee
Ind Tech Res Inst
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ind Tech Res Inst filed Critical Ind Tech Res Inst
Priority to TW94112987A priority Critical patent/TWI301027B/en
Publication of TW200638721A publication Critical patent/TW200638721A/en
Application granted granted Critical
Publication of TWI301027B publication Critical patent/TWI301027B/en

Links

Landscapes

  • Mobile Radio Communication Systems (AREA)

Description

1301027 有了這些安全關聯之後,行動終端10便可以提出註冊請 ,(步」驟S40a)給外地代理器210,然後由外地代理器21〇轉送 f冊請求(步驟S41a)給本地代理器ι10,由本地代理器11〇負 貝對,動終端10進行認證以及註冊的動作(步驟S5〇及S55) 並將註冊回應傳回給外地代理器21〇(步驟S42a),最後再由外 地代理益210轉送註冊回應給行動終端1〇(步驟S43a),使行 動,端10完成註冊(步驟S57),相關的先前技術包括:美國專 利第6760444號,其主要的内容在於解決如何認證合法行 端10的相關技術。 、1301027 After having these security associations, the mobile terminal 10 can make a registration request, (step S40a) to the foreign agent 210, and then the foreign agent 21 transfers the f-book request (step S41a) to the local agent ι10, The home agent 11 performs a pairing operation, and the mobile terminal 10 performs an authentication and registration operation (steps S5 and S55) and transmits the registration response back to the foreign agent 21 (step S42a), and finally the foreign agent benefits 210. Transferring the registration response to the mobile terminal 1 (step S43a), causing the action, the terminal 10 completes the registration (step S57), and the related prior art includes: US Pat. No. 6,760,444, the main content of which is to solve the problem of how to authenticate the legitimate terminal 10 Related technology. ,

然而此種習知行動網址的認證方法上,其所需要建立的安 全,聯在可變動性(Scalability)上是相當缺乏的,另外由於必須 在母個外地代理器210與行動終端1〇以及本地代理器之 巧都要建立各自的安全關聯,因此對於這些安全關聯的管理也 t成項龐大的負擔。為了解決這些問題,同時因應行動網址 的不同,展需求,如:認證(Authentication)、授權(Authorization) 計量計費(Accounting),出現了 一種如「第2A圖」以及 :第2B圖」所示之具有aaa行動通訊網路架構的行動網址 認證方法,此種方法主要係分別在本地網丨⑻以及外地網2〇〇 中透過本地認證授權伺服器12〇以及外地認證授權伺服器22〇 ^進行認證程序的步驟,如此一來所有屬於同一認證伺服器所 官轄之代理器均可以透過所對應之認證伺服器來進行認證程 序的步驟’因此可以降低本地代理器11()以及外地代理器21〇 之間的認證負擔,可以提升整體的可變性。 此種AAA行動通訊網路架構下的行動網址認證方法,省 去了原先建立在行動終端10、本地代理器11〇與外地代理器 =0之間的安全關聯,取而代之的是在行動終端1〇與本地認 證授權伺服器120之間的第一安全關聯2〇(步驟S30)、外地代 理器210與外地認證授權伺服器220之間的第二安全關聯 21(步驟S31)、本地認證授權伺服器12〇與外地認證授權伺服 7 ⑧ 1301027 命dr 門的苐—女全關聯步驟S32),以及本地代理哭110 ^ 120 23;;^ 糾1〇由本地網刚漫遊至外地網之後, 驟的動作,此時行動終端10將提出註冊請求(步 写22〇ai’^i=ff外地代理器210與外地認證授權飼服 ί二ί?^、1月求(步驟S41a、41b),由外地認證授權伺 粗了 pi j 1進订綱丁動終端1〇的認證(步驟S50)產生認證資 二B、 一組金鑰組(步驟S56),並將本地代理器11〇所However, in the authentication method of such a conventional action website, the security that needs to be established is quite lacking in the Scalability, and also because the parent foreign agent 210 and the mobile terminal must be local and local. Agents have to establish their own security associations, so the management of these security associations is also a huge burden. In order to solve these problems, and in response to the different action URLs, such as: Authentication, Authorization, and Accounting, there is a kind of "Figure 2A" and: Figure 2B. The mobile website authentication method with the aaa mobile communication network architecture mainly performs authentication in the local network (8) and the foreign network 2 through the local authentication and authorization server 12 and the foreign authentication and authorization server 22 The steps of the program, so that all the agents belonging to the same authentication server can perform the steps of the authentication process through the corresponding authentication server. Therefore, the local agent 11 () and the foreign agent 21 can be lowered. The burden of certification between them can improve overall variability. The mobile website authentication method under the AAA mobile communication network architecture eliminates the security association originally established between the mobile terminal 10, the local agent 11 and the foreign agent=0, and is replaced by the mobile terminal. The first security association 2 between the local authentication authorization server 120 (step S30), the second security association 21 between the foreign agent 210 and the foreign authentication authorization server 220 (step S31), and the local authentication authorization server 12 〇 外 外 外 外 8 8 7 7 7 7 7 7 7 7 7 7 7 7 7 dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr dr ^ ^ ^ ^ ^ ^ At this time, the mobile terminal 10 will make a registration request (step write 22〇ai'^i=ff foreign agent 210 and foreign authentication authorization service ί ί 、, January request (steps S41a, 41b), authorized by the foreign certification Serving the authentication of the pi j 1 into the ordering terminal 1 (step S50), generating the authentication element B, a group of key groups (step S56), and the local agent 11

品之、’鑰、、且連同a忍證資料及註冊請求轉送給本地代理器 (步驟S41c),由本地代理器110進行註冊(步,驟S55)並傳回 註冊回給本地認證授權錬器啊步驟Μ%),再透過外地 認證授權飼服器220以及外地代理器21〇將註冊回應轉送給行 動終端10(步驟S43a、S43b及S43c),使行動終端10完成註 冊(步驟S57)。其中本地代理器11〇、外地代理器別以及行 動終端ίο會將所需的金鑰組給保留下來(步驟S44a、S44b及 S44c)。相關的先前技術可以參考包括:Efficient Authemicati()n and Key Distribution in Wireless IP Network 以及 Identity-base Cryptosystems and Signature Schemes 等論文,其主要係同樣係 提出如何解決合法行動終端1〇認證的相關技術。 雖然在AAA行動通訊網路架構下的行動網址認證方法可 以進一步提升整體的可變性以及安全性,但是伴隨著認證過程 中所大篁增加的認證程序(Authentication Procedure)的步驟及 認證週期時間(Round Trip Time),使得整體認證的效率不彰。 因此,要如何保有原來在AAA行動通訊網路架構下之行 動網址認證方法的可變性以及安全性,在不改變AAA行動通 訊網路架構的前提下,能夠更進一步提升整體的認證效率,隨 時隨地都能夠確保行動終端10在任何網路中都能夠即時獲得 到最安全的保障,是目前行動通訊網路發展的主軸所在。 【發明内容】 ⑤ 8 1301027 *有鑑於此,本發明提出一種在行動網址認證、授權、計費 機:制上之金鑰快取認證方法,藉由一次將行動終端執行認證時 所需的認證資料以及多組金鑰組利用金鑰快取方式分別暫存 在也代理器與外地認證授權伺服器中,來達到減少行動終端 在1^ g時所需I費之認證步驟次數及認證週期時間,更可減少 認證步驟中所產生的訊息數量。 在行動網址認證、授權、計費機制上之金鑰快取認證方法 上,t括下列步驟··在行動終端與本地認證授權伺服器、外地 $减外地認證授權舰!!、外地認證授翻㈣與本地認 ^授,魏II、及本地認證授權舰器與本地代理^之間分別 「安全關聯、第二安全_、第三安全關聯、及第四安 由該本地認證授翻服器透過外地代㈣及外地認證 服H的觀,對行祕端所提出之註冊請求進行認證並 產生遇證倾,同時產生肋進行多次認證所需之—组以上金 各金鑰財將本地代理輯需之第—組金鑰組連同 求轉送至本地代理11;本地代理11註冊行動 二=、η拉子/i妾收之賴資料及第一組金鎗組於所屬之快取 產生註冊回應傳回給本地認證授權伺服11 ;本地認 收註冊回應,並連同認證資料及外地認證授權 之4—組金输組傳送給外地認證授翻服器;外地 J證5她_存所接收之認證資料及第一組金鑰㈣ 外地代理器暫存所接收 訊及萌回應轉送給行動終 攄切欲=二/接收之第—組金鑰組於所屬之快取空間,並根 據丘貝吼及注冊回應完成註冊。 要更進—步提出#行動終端所儲存之金鑰組逾時需 要更換金餘、、且以及同時需要進行本地代理器更換金瑜組時,透The product, the 'key, and the a forcible information and the registration request are forwarded to the local agent (step S41c), the local agent 110 registers (step S55) and returns the registration back to the local authentication authority. The step Μ%), and then the registration certificate is transferred to the mobile terminal 10 via the foreign certificate authority server 220 and the foreign agent 21 (steps S43a, S43b, and S43c), and the mobile terminal 10 completes the registration (step S57). The local agent 11〇, the foreign agent and the mobile terminal ίο will retain the required key group (steps S44a, S44b and S44c). Related prior art can refer to papers such as Efficient Authemicati () n and Key Distribution in Wireless IP Network and Identity-base Cryptosystems and Signature Schemes, which are mainly related to how to solve the legal mobile terminal authentication. Although the mobile URL authentication method under the AAA mobile communication network architecture can further improve the overall variability and security, it is accompanied by the steps of the authentication procedure and the certification cycle time (Round Trip). Time) makes the overall certification inefficient. Therefore, how to maintain the variability and security of the original mobile website authentication method under the AAA mobile communication network architecture can further improve the overall authentication efficiency without changing the AAA mobile communication network architecture, and can be used anytime, anywhere. Ensuring that the mobile terminal 10 can obtain the most secure protection in any network is the main axis of the current development of the mobile communication network. SUMMARY OF THE INVENTION 5 8 1301027 * In view of this, the present invention proposes a method for authentication, authorization, and accounting of a mobile website: a key authentication method for performing authentication on a mobile terminal by performing authentication at one time The data and the multiple key groups are temporarily stored in the proxy and the foreign authentication and authorization server by using the key cache method respectively, so as to achieve the number of authentication steps and the authentication cycle time for reducing the I fee required for the mobile terminal at 1^g. It also reduces the number of messages generated during the authentication step. In the key authentication method for the authentication, authorization, and charging mechanism of the mobile website, the following steps are included: · In the mobile terminal and the local authentication and authorization server, the foreign domain minus the foreign certification authorized ship!!, the foreign certification (4) with the local recognition, Wei II, and the local certification authorized ship and the local agent ^ respectively, "security association, second security _, third security association, and fourth security by the local authentication The concept of foreign generation (4) and foreign certification service H, the registration request made by the secret end of the line is authenticated and the witness is issued, and at the same time, the ribs are required for multiple certifications. The required first-group key group is forwarded to the local agent 11 together; the local agent 11 registration action 2 =, η 拉子/i妾 之 资料 及 and the first group of guns are generated in the cache Return to the local authentication and authorization servo 11; local acknowledgment registration response, and send it to the foreign certification transfer server together with the certification data and the foreign certification authorized 4 - group gold transfer group; the foreign J certificate 5 her _ deposit receipt authentication information And the first set of keys (four) The foreign agent temporarily stores the received message and the message is sent to the end of the action = 2 / the received group - the group key group is in the cache space, and the registration is completed according to Qiubei and the registration response. - Step by step # The key group stored in the mobile terminal needs to be replaced when the time is over, and at the same time, the local agent is required to replace the Jinyu group.

Claims (1)

1301027 I~~ - α年占月//日修正替換頁 十、申請專利範圍: 1. 一種在行動網址認證、授權、計費機制上之金鑰快取認證方法, 應用於一行動終端(MN)於一 AAA行動通訊網路中更換一外地 認證授權伺服器(AAAF)需要進行認證時,該方法包含下列步 驟· 在該行動終端與一本地認證授權伺服器(AAAH)、一外地代 理器(FA)與該外地認證授權伺服器、該外地認證授權伺服器與 戎本地認證授權伺服器、及該本地認證授權伺服器與一本地代 = f(HA)之間分別建立一第一安全關聯、一第二安全關聯、一 第三安全關聯、及一第四安全關聯; 由該透過該FA及該AAAF的轉送,對該_所提 出々之一註冊請求進行認證並產生一認證資料,同時產生包含一 ,組金鑰組且用以進行多次認證所需之一組以上金鑰組,並 =該金鑰組帽該HA所需之該第一組金齡及各組該金输 、、且、同该涊證資料及該註冊請求轉送至該; 入人該HA註冊該_並暫存所接收之該認證資料、該第一組 = 1、、、且及其他各組该金餘組於所屬之一快取空間,同時產生一 注冊回應傳回給該; 所接收該註冊回應,並連同該認證資料及該AAAF 而〜弟組金餘組及各組該金鑰組傳送給該AAAF ; 組今曰^所接收之該認證資料、該第一組金餘組及各 屬之該快取空間’同時將該fa所需之該第― 證資料及該註冊回應轉送給継 間,^ 士夕曰^所接收之該第—組金錄組於所屬之該快取空 註冊第—組金齡連_認證資料及該 2間,===第冊-二=屬之該快取空 2·如申請專利範圍第 :凡成η冊 乐貞所述之在行動網址認證、授權、計費機 18 1301027 金墙快取認證方法,其中該FA及該ha更包含-逾時 =數裔’用以根據-設定控制條件來控制各該金雜的逾^ Hi ^利範圍第2項所述之在行動網址認證、授權、計費機 間隔。讀快取認證方法,其中該設定控制條件可以係—時間 1 ΐ明f她圍第2項所述之在行動網址認證、授權、計贄機 傳遞ϊί難取繼方法,射該奴控繼件可以係-資料 5mfi利範圍第2項所述之在行動網址認證、授權、計費播 傳遞數快取認證方法,其中該設定控制條件可以係-封包 6·ΞΙΐί,圍第1項所述之在行動網址認證、授權、含十_ 取認證!:法’其中該_產生用以ΐ行ί二^ 7.㈡動網址認證、授權、計費機 於該AAA行動通1網路·、,中°亥快取空間大小係根據該MN &amp;如申請專利留時間長短而定。 制上之金输快取認證1方秀鋪、計費機 之該逾時計數器控制該 更包含透過位於該FA 所儲存之該金输組逾時的逾時更換,當該MN 步,驟·· 丁叩而要更換以進行認證時,其包含下列 冊請求及,接收該臟所提出之該註 並產生該註冊回應; &amp; 一更換金鑰組請求,進行認證 求將輪=認證,同時根據該更換金繪組請 ㊉—組金瑜組連同該認證資料及該註冊回 191301027 I~~ - α年占月//日修正 replacement page 10, patent application scope: 1. A key authentication method for authentication, authorization, and charging mechanisms on mobile websites, applied to a mobile terminal (MN) When a foreign authentication authority (AAAF) needs to be authenticated in an AAA mobile communication network, the method includes the following steps: at the mobile terminal and a local authentication and authorization server (AAAH), a foreign agent (FA) Establishing a first security association with the foreign authentication authority server, the foreign certificate authority server and the local authentication authority server, and the local authentication authority server and a local generation=f(HA), respectively a second security association, a third security association, and a fourth security association; by the forwarding of the FA and the AAAF, authenticating one of the registration requests of the _ request and generating an authentication data, and generating the inclusion First, a group key group and one or more key groups required for performing multiple authentications, and = the key group caps the first group of golden ages and the groups of the gold required for the HA, and With the card And the registration request is forwarded to the user; the person registers the HA and stores the authentication information received, the first group = 1, , and other groups of the golden group in one of the cache spaces At the same time, a registration response is sent back to the; the registration response is received, and the authentication information and the AAAF are transmitted together with the AAAF and the group of the key group are transmitted to the AAAF; The certification information, the first group of Jin Jin Group and the cache space of each of the genres ' at the same time, the PIN information required for the fa and the registration response are forwarded to the day, ^ 士 曰 曰 ^ received The first group of the group is registered in the cached group - the group of Jinling Lian _ certification materials and the two, === the first volume - two = the genus of the cache 2 : The method of authentication, authorization, and billing machine in the mobile website authentication, authorization, and accounting machine 18 1301027 Golden Wall cache authentication method, wherein the FA and the ha further include - timeout = several people's use to control according to - Conditions to control the amount of each of the Jin Miscellaneous Ranges mentioned in item 2 of the Action Website Authentication, Authorization, and Metering Machines . Read the cache authentication method, wherein the set control condition can be - time 1 f f 她 围 围 围 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第 第The method of authenticating, authorizing, and billing transmission number authentication in the mobile website may be described in item 2 of the data 5mfi range, wherein the setting control condition may be - packet 6·ΞΙΐί, as described in item 1 In the action website authentication, authorization, including the ten-acquisition!: method 'where the _ is generated for the ί ^ ^ ^ (2) mobile website authentication, authorization, billing machine in the AAA mobile communication 1 network,, The size of the medium-occupied space is determined according to the length of time the MN &amp; The time-out counter control of the gold-storage cache authentication 1 party show shop and the metering machine further includes the time-out replacement by the timeout of the gold input group stored in the FA, when the MN step, · When Ding Hao wants to change for certification, it contains the following request and receives the note from the dirty and generates the registration response; &amp; A replacement key group request, the certification seeks the round = certification, at the same time According to the replacement gold painting team, please ask the 10-group Jinyu group together with the certification information and the registration back to 19 1301027 應傳回給該FA ; ,忒fA暫存所接收之該第二組金鑰組於所屬之該快取空 同日守恥忒_所需之該第二組金餘組連同該認證赴韻1及該 5主冊回應轉送給該MN ;及 一 忒丽儲存所接收之該第二組金錄組於所屬之該快取空 曰,並根據該認證料及該註冊回應完成註冊。 =明專利|&amp;圍第2項所述之在行動網址認證、授權、計費機 ϊϋίί快取認證方法,其中該方法更包含透過該HA之該 =j數裔控制該ΠΑ之該金鑰組的逾時更換,當該讓所儲 金鑰組更換而該HA需要同步更換該金錄組時,其包含 卜夕!J步驟· 該ha接收到來自該逾時計數器之一更換金输組請求; ,HA更換該金餘組成為一第二組金餘組; 二亥HA利用该第二組金餘組進行資料加密傳送;及 資料接收該^傳送由該第二組金餘組加密資料並完成 10.=請專利範圍第2項所述之在行動網址認證、授權 兩要證方法,其中該方法當該應更換該FA而 而要更換该金鑰組以進行認證時,更包含下列步驟: 由該AAAF透過該FA的轉送,對該_ 冊請求進行認證; 靴出之该5主 μ 一该AAAF進行該金錄組的更換,同時將該fa所 一 弟二組金鑰組傳回給該FA ; 該暫存所接收之該第二組金錄組於 間,同時通知該HA更換該金餘組為該第二組金触决取工 該ΠΑ更換該金餘組至該第二組金餘組產生 冊回應連同該認證資料傳回仏_FA . 了i玍忑汪 ~祕臟靖回應及細編 弟一組金鍮組傳送給該;及 人 20 外邊MN鍺存所接收之該第二組 11. 卜年z月//日修:替換頁] 證驗該註_應;成註冊之該快取 简其㈣電腦可執 網址•授權、計費在行動 21 1301027 式 fism難 规铒 _±W(S57) 牛 S郞Ηΐ串回謙(ssa) 滿圧iiABIf^(s40a) A1 # f栅回牒_0Jl(s42a) S 郞牒 Wsl^(s41a) 挪 ίΖ:满|1[沌卟||蓥(0)32) 娜:沌卟蟊蓥(S31) 祕ϋΜι劝卟PJ蓥(S30) --Η fism難 nlm±実 ss) fM'l鲣眾難 _1(S50) 行動終端1 〇 外地代理器210 本地代理器110 第:^頁 1301027 乃年/月夕日修正替換頁 圖式 M2A國議) ♦1301027 should be passed back to the FA; , 忒fA temporary storage of the second group of key groups received in the cache of the same day, the second group of Jin Yu group required together with the certification to go to the rhyme 1 and the 5 main book responses are forwarded to the MN; and the second group of gold records received by the store is located in the cached area, and the registration is completed according to the certification material and the registration response. = 明专利|&amp; </ RTI> </ RTI> </ RTI> </ RTI> </ RTI> </ RTI> </ RTI> </ RTI> </ RTI> </ RTI> The timeout replacement of the group, when the storage key group is replaced and the HA needs to replace the golden record group synchronously, it includes the buds! J step · The ha receives a replacement gold input group from the one of the timeout counters Request; , HA replaces the gold balance into a second group of Jin Yu group; Erhai HA uses the second group of Jin Yu group for data encryption transmission; and data reception of the ^ transmission by the second group of Jin Jin group encrypted data And complete the method of authenticating and authorizing the two methods in the mobile website as described in item 2 of the patent scope, wherein the method further includes the following when the FA should be replaced and the key group is to be replaced for authentication. Step: The AAAF sends the request to the AAAF through the transfer of the FA; the 5 main μ of the boots out, the AAAF performs the replacement of the golden record group, and the fa is a second group key group. Returning to the FA; the second group of gold records received by the temporary storage At the same time, the HA is notified to replace the Jinyu group for the second group of gold to take the work. The replacement of the Jinyu group to the second group of Jinjin group produces a book response together with the certification data and returns 仏_FA.忑 ~ 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘 秘Note _ should be; the registration of the cache is simple (four) computer executable website • authorization, billing in action 21 1301027 style fim difficult 铒 _ ± W (S57) cattle S 郞Ηΐ string back to Qian (ssa) full iiABIf ^(s40a) A1 # f栅回牒_0Jl(s42a) S 郞牒Wsl^(s41a) ΖίΖ:满|1[卟卟||蓥(0)32) 娜:卟蟊蓥卟蟊蓥(S31) Secret ϋΜ 卟 卟 卟 蓥 S S S S S S S S ism ism ism ism ism ism ism ism ism ism ism ism ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( (夕日修正 replacement page map M2A national consultation) ♦ 第A頁 7 02 11 ο 3 I 頁 換 替 正 修 曰 // 月 年 方丨 式 璐3A國 ♦Page A 7 02 11 ο 3 I Page Replacement 曰 曰 月 月 月 月 月 A A A A A A A 第义頁 1301027 α年石月//日修正替換頁i 式 H 视热 _H+W(S57)The first page 1301027 α year stone month / / day correction replacement page i type H heat _H + W (S57) 滿圧 _i_3^(s40a) i—-0 M3BS 菊晒1商兗±咏離© ^l»,(s45b)满i _i_3^(s40a) i--0 M3BS 菊晒1商兖±咏从© ^l»,(s45b) ¾郞 S_sl^(s41a) A13⁄4郞 S_sl^(s41a) A1 _味1薛^ hr&amp;&gt;il© 05S) 1ω§- S 郞 if^(s41b) ρϋ瓣⑴沌卟靆蓥(S32) pw^l^^ISKScoo) I逾鍤骓220_味1薛^ hr&amp;&gt;il© 05S) 1ω§- S 郞 if^(s41b) ρϋ flap (1) chaos (S32) pw^l^^ISKScoo) I over 220 ίΜ'ιΙϋ 眾 _ S_(S55) 菊晒—©它±咏il圈 知徵I__^(s45a) 灘ΪΖ:满]3艰咏靆蓥(0)33) 钭荏i_Ϊ-Μ0 斜荏方瞄骓11〇 1301027 %年2月//日修正替換] 式 fM'lg眾_ 驰^S_(S57)Μ Ιϋ Ιϋ Ιϋ 众 _ S_(S55) 菊晒—© It±咏 圈圈知征I__^(s45a) Beach ΪΖ: Full]3 难咏叇蓥(0)33) 钭荏i_Ϊ-Μ0 斜荏方骓11〇1301027%Yearly February//Day correction replacement] Type fM'lg众_ Chi^S_(S57) s郞m串回麵 (S43a) i—-0S郞m string back (S43a) i-0 瓣3C國Petal 3C ίΜ·ι»黎 _i_(s50) m滋 if 卧寒 I£(S51) S 郞牌 _if 斜(S41a) —ΜΙΡΙίω^^- 次薛3瞄:210 i^lMO 斜薛鹨蠲 il-MO 讲甚ft瞄till ο 1301027 次年/月//日修正替換頁丨 圖式 璐 3DW il-o Μ 漭 一¥, 一 nn 鑛 m -g滋 UJ迎 爵 商 K)鄉 、^綠 商 察 —i-0 P «郞 ff 咏馨譁gEI»^(s61) «郞«咏馨犛苕E1»$(S60) 孚甚鹗蠲 ilaa舞骓 220 更換相同新名 (S53) 1 1 滿足更換金鑰 (S52) 商 商 察 斜荏鹨蠲 Ili-g ¼甚ft瞄骓110 1301027 %年6月//日修正替換頁 式 规铒 _iw(s57) 璐3E國Μ ι ι 黎 _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ Speaking of ft aiming till ο 1301027 next year / month / / day correction replacement page 丨 pattern 璐 3DW il-o Μ 漭 one ¥, one nn mine m - g Zi UJ Ying Jue business K) township, ^ green business inspection - I-0 P «郞ff 咏馨哗gEI»^(s61) «郞«咏馨牦苕 E1»$(S60) 孚鹗蠲鹗蠲ilaa 骓 220 Replace the same new name (S53) 1 1 Meet the replacement key (S52) Business Consultant Inclined Ili-g 1⁄4 ft 骓 骓 110 1301027 % June//Day Correction Replacement Page Specification 铒iw(s57) 璐3E 11-0 I11-0 I iiEEh#_sl^(ssb) m藤if咏馨圈(S51) ίΜ'ι»眾難鹗 Ii(s50)iiEEh#_sl^(ssb) m 藤 if咏心圈(S51) ίΜ'ι»众难鹗 Ii(s50) 孕荏3瞄骓210 李荏徵If —fM眾骓 220 • SPregnancy 3 aiming 骓 210 Li Yuzheng If —fM 骓 220 • S 斜荏穴瞄10 第和頁 1301027 ^年^月//日修正替換員‘ 式 满4國 Φ 更換 外地認證 授權伺服器 外地代理器 更換 金鐺組逾時 鹨 蠲 失敗 成功 失敗 成功_ 失敗 成功 認證結果 σ&gt; 00 c σ&gt; CO σ&gt; 00 一般ΑΑΑ架構 步驟 步驟 步驟 步驟 步驟 步驟 〇 00 4^ 4^ 4^ 11 步驟 步驟 步驟 步驟 步驟 步驟 〇 〇 33% 25% 33% 50% 節省認證程序 步驟比例 πΧ ΠΜ πΜ 節省認證週期 時間 300 第命丨頁荏 荏 瞄 10 10 10 10 10 10 10 10 10 10 10 10 10 10 10 10 10 10 10 10 10 第 130 130 130 130 130 130 130 130 130 130 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换 更换Result σ&gt; 00 c σ&gt; CO σ&gt; 00 General ΑΑΑ Architecture Steps Steps Steps Steps Steps 〇00 4^ 4^ 4^ 11 Steps Steps Steps Steps Steps 〇〇33% 25% 33% 50% Save the certification procedure step ratio ΧΧ ΠΜ πΜ Save the certification cycle time 300
TW94112987A 2005-04-22 2005-04-22 A mobile ip authentication method with aaa and key cache and a recordable medium thereof TWI301027B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW94112987A TWI301027B (en) 2005-04-22 2005-04-22 A mobile ip authentication method with aaa and key cache and a recordable medium thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW94112987A TWI301027B (en) 2005-04-22 2005-04-22 A mobile ip authentication method with aaa and key cache and a recordable medium thereof

Publications (2)

Publication Number Publication Date
TW200638721A TW200638721A (en) 2006-11-01
TWI301027B true TWI301027B (en) 2008-09-11

Family

ID=45070119

Family Applications (1)

Application Number Title Priority Date Filing Date
TW94112987A TWI301027B (en) 2005-04-22 2005-04-22 A mobile ip authentication method with aaa and key cache and a recordable medium thereof

Country Status (1)

Country Link
TW (1) TWI301027B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI505126B (en) * 2013-11-07 2015-10-21 Golden Vast Macao Commercial Offshore Ltd A method and apparatus to obtain a key

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI505126B (en) * 2013-11-07 2015-10-21 Golden Vast Macao Commercial Offshore Ltd A method and apparatus to obtain a key

Also Published As

Publication number Publication date
TW200638721A (en) 2006-11-01

Similar Documents

Publication Publication Date Title
JP7273148B2 (en) Digital certificate issuing method, digital certificate issuing center, storage medium and computer program
CN112989415B (en) Private data storage and access control method and system based on block chain
CA3049761C (en) Method for providing payment gateway service using utxo-based protocol and server using same
Gutmann PKI: it's not dead, just resting
JP4574957B2 (en) Group management organization device, user device, service provider device, and program
JP4589758B2 (en) Data communication system, proxy system server, computer program, and data communication method
CN110537346A (en) Safe decentralization domain name system
CN110046521A (en) Decentralization method for secret protection
JP3808297B2 (en) IC card system and IC card
TW201008211A (en) Method and system for managing network identity
US20070255951A1 (en) Token Based Multi-protocol Authentication System and Methods
EP2487863A2 (en) Enabling secure access to sensor network infrastructure using multiple interfaces and application based group key selection
CN101542965A (en) Authentication delegation based on re-verification of cryptographic evidence
JP2005532742A5 (en) Method and system for preventing unauthorized delivery and use of electronic keys with key seeds
CN113643134B (en) Internet of things blockchain transaction method and system based on multi-key homomorphic encryption
CN114329290B (en) Capability open platform and authorized access method thereof
CN115811406A (en) Internet of things block chain authentication method and system based on ring signature consensus mechanism
Chen et al. Toward achieving anonymous nft trading
Siris et al. Trusted d2d-based iot resource access using smart contracts
CN115883214A (en) Electronic medical data sharing system and method based on alliance chain and CP-ABE
EP1302053A2 (en) Systems and methods for secured electronic transactions
CN113242242B (en) Block chain application method and block chain application terminal device
TWI301027B (en) A mobile ip authentication method with aaa and key cache and a recordable medium thereof
EP1912147A1 (en) Method and apparatus for selling a digital resource
Dumas et al. LocalPKI: An interoperable and IoT friendly PKI