CAJ | 학술논문

安全性、移动性和服务质量构成了当前互联网研究的三类关键问题。文中研究探讨了可以支持安全性和移动性的主机身份协议(HIP)，论述了该协议对安全性和移动性支持能力，其将公钥体系中的公钥作为主机身份标识(HI)，使得主机身份标识具备了验证主机身份真伪的能力，以及通过会话绑定主机身份而非IP地址来提供主机移动管理能力。但是HIP体系结构及其协议缺乏管理基础设施以及完整的协议簇，尚无法在现有互联网中直接部署和应用。针对此问题，提出了采用联邦制身份体系实现各个管理域之间的主机身份验证以解决HIP管理基础设施的不足，以及采用包含主机身份验证协议和主机身份查询协议的主机身份层解决HIP完整协议簇的建议。并且说明了改进建议的合理性。
안전성、이동성화복무질량구성료당전호련망연구적삼류관건문제。문중연구탐토료가이지지안전성화이동성적주궤신빈협의(HIP)，논술료해협의대안전성화이동성지지능력，기장공약체계중적공약작위주궤신빈표식(HI)，사득주궤신빈표식구비료험증주궤신빈진위적능력，이급통과회화방정주궤신빈이비IP지지래제공주궤이동관리능력。단시HIP체계결구급기협의결핍관리기출설시이급완정적협의족，상무법재현유호련망중직접부서화응용。침대차문제，제출료채용련방제신빈체계실현각개관리역지간적주궤신빈험증이해결HIP관리기출설시적불족，이급채용포함주궤신빈험증협의화주궤신빈사순협의적주궤신빈층해결HIP완정협의족적건의。병차설명료개진건의적합이성。
Security,mobility and QoS ( Quality of Service) are three critical issues of current Internet research. The Host Identify Protocol ( HIP) supporting security and mobility is discussed which takes a public key of public key cryptography as a Host Identifier ( HI) . The capability for supporting security and mobility of HIP are discussed which takes the public key in the public key infrastructure as the host identifier to provide the ability to verify the identity of the host,and binds the session through the host identifier instead of IP address to provide the host mobility management capability. However,the lack of management infrastructure and complete protocol stack,HIP archi-tecture and protocol could not be deployed and applied directly in practical network environment. To solve these problems,using federated identify based approach to achieve host identity authentication among multi-management domains to solve the HIP management infra-structure deficiencies,and applying host identity layer containing host authentication protocol and host identity query protocol to solve HIP complete protocol stack are proposed. Besides,the reasonability of these recommendations is explained.