The Study on Security Technologies of 10G EPON
|School||Beijing University of Posts and Telecommunications|
|Course||Communication and Information System|
|Keywords||EPON 1OG EPON GCM GMAC Encryption and authentication|
With the rapid development of Internet technology, the users of the network broadband demand continues to increase. The the existing G/10G bits of EPON, 10G EPON access network to provide users with efficient data transfer rate, however, is also facing a more serious security threat, the traditional encryption authentication technology has been unable to meet demand. Therefore, how to effectively protect the high-speed network communications, security has become a hot research. 10G EPON network security issues, focusing on the combination of the new standard encryption and authentication algorithms that GCM (Galois / Counter Mode) encryption and authentication algorithms 10G EPON network security technology to conduct in-depth study proposed a GMAC the 10G EPON certification mechanism and detailed planning and application. Finally, GMAC combined with AES the 10G EPON safety program, and 10G EPON the GMAC and stir algorithm combination security solutions and detailed design, to ensure that the the GE Ethernet data transmission network security. This article is mainly done the following work: 1. Follow-up study of the progress made in the standardization work of 1GEPON and 10G EPON, and detailed analysis of its system architecture. Full investigation of the security problems faced by the EPON network and security solutions, and leads to 10G EPON facing problems in terms of security. Authentication technology plays an important role in the security technology detailed analysis of the proposed combination GMAC (Galois Message Authentication Code) the 10G EPON certification mechanism, detailed design certification details including ONU and user authentication process, and certification system module structure diagram, providing a range of security technology solutions for 10G EPON has laid a solid foundation. Detailed planning and design of the the GMAC with AES encryption algorithm combining the 10G EPON safety program certification part of GMAC-based authentication mechanism using the AES encryption algorithm, encryption part and combined GCM encryption and authentication features designed a new key update and synchronization mechanisms, can effectively guarantee the safety and reliability of the key exchange process. Participate in the standard proposal \The encryption section will stir the algorithm is improved in order to support the high-speed rate of the network, the authentication section GMAC mode provides a secure data transmission environment 10GEPON. The full text is organized as follows: Chapter 1: Introduction Background of this study, analysis of various access network technologies and security issues, given the significance of the study and research. Chapter II: 1G EPON and 10G EPON standardized progress tracking research, analysis research and its system architecture, and security solutions. Chapter III: detailed description of authentication technology combined with GMAC asked the the 10G EPON certification mechanism, detailed planning. Chapter 4: Based on GMAC authentication and AES as the encryption algorithm, the 10G EPON safety program, and improved stirring algorithm as the encryption algorithm the 10G EPON safety program, and for the detailed design and analysis related programs, focus, including encryption and authentication two parts. Chapter 5: summary of the research for this article, and look to the future.