计算机应用 ›› 2016, Vol. 36 ›› Issue (8): 2236-2240.DOI: 10.11772/j.issn.1001-9081.2016.08.2236

• 网络空间安全 • 上一篇    下一篇

IMTP——一种MIPv6身份与移动轨迹隐私保护机制

仵惠婷, 王振兴, 张连成, 孔亚洲   

  1. 数学工程与先进计算国家重点实验室(信息工程大学), 郑州 450001
  • 收稿日期:2016-01-11 修回日期:2016-03-27 出版日期:2016-08-10 发布日期:2016-08-10
  • 通讯作者: 仵惠婷
  • 作者简介:仵惠婷(1990-),女,陕西富平人,硕士研究生,主要研究方向:IPv6网络安全、移动互联网;王振兴(1959-),男,河北晋州人,教授,博士,主要研究方向:IPv6网络安全、移动互联网;张连成(1982-),男,河南商丘人,讲师,博士,主要研究方向:流量分析、网络安全;孔亚洲(1989-),男,河南濮阳人,博士研究生,主要研究方向:IPv6网络安全。
  • 基金资助:
    国家自然科学基金资助项目(61402526)。

IMTP: a privacy protection mechanism for MIPv6 identity and moving trajectory

WU Huiting, WANG Zhenxing, ZHANG Liancheng, KONG Yazhou   

  1. State Key Laboratory of Mathematical Engineering and Advanced Computing(Information Engineering University), Zhengzhou Henan 450001, China
  • Received:2016-01-11 Revised:2016-03-27 Online:2016-08-10 Published:2016-08-10
  • Supported by:
    This work is partially supported by the National Natural Science Foundation of China (61402526).

摘要: 身份与移动轨迹隐私保护是MIPv6研究与应用领域的一个关注热点。针对移动节点的移动消息和应用数据易受恶意流量分析而暴露身份并被定位追踪的问题,提出一种支持身份隐匿并防范定位追踪的MIPv6地址隐私保护机制,即IMTP机制。首先,通过自定义移动消息选项Encryptedword、与本地地址作异或变换,实现了移动节点身份的隐私保护;然后,借助任意节点互相认证技术完成位置代理随机任命,从而隐蔽移动节点的转交地址,实现了MIPv6节点移动轨迹的隐私保护。仿真结果表明,IMTP机制具备隐私保护能力强、资源开销少、对标准MIPv6协议改动小且良好支持路由优化等优势,还具有部署灵活、扩展性强等优点。IMTP机制提供的身份与移动轨迹双重隐私保护将更有利于降低特定移动节点通信数据的截获概率,从而保障移动节点间的通信安全。

关键词: 移动IPv6, 身份与移动轨迹, 异或变换, 随机任命, 互相认证

Abstract: Nowadays, privacy protection for identity and trajectory has been a hot point in research and application field of Mobile IPv6 (MIPv6). Targeting on the problem that the mobile message and application data of mobile node suffers from malicious data analysis to expose its identity and to be located and tracked, an MIPv6 address privacy protection mechanism named IMTP was proposed, which supports hidden identity and prevents location tracking. In the first place, by applying self-defining mobile message option Encryptedword and making XOR transformation with home address, IMTP achieved the privacy protection of MIPv6 node identity. In the second place, by means of the mutual authentication technique among any nodes, this mechanism completed the randomly appointing of location proxy and hided the care of address of mobile node, thus to realize the privacy protection of MIPv6 node trajectory. The result of simulation indicates that IMTP has the higher quality of privacy protection and low resource cost. Meanwhile, it not only modifies a little of the standard MIPv6 protocol and well supports routing optimization, but also possesses flexible deployment, strong scalability and other advantages. The dual privacy protection for identity and trajectory provided by IMTP will be benefit to reduce the probability that specific mobile node communication data would be intercepted, thus to guarantee the communication security among the mobile nodes.

Key words: Mobile IPv6 (MIPv6), identity and moving trajectory, XOR transformation, randomly appointing, mutual authentication

中图分类号: