用户中心
收藏本站
登录    网员申请 | VIS虚拟信息系统   
通信标准 | 政策法规 | 出版物 | 产业资讯 | 专题跟踪 | 交流研讨 | 通信学苑
 您当前的位置:PTSN首页>>通信标准>>ATM论坛


AF-SEC-0187.000 安全规范版本1.1的附录 - 单向连接的带内安全性
标准号 AF-SEC-0187.000     登录可关注该标准
中文名称 安全规范版本1.1的附录 - 单向连接的带内安全性
英文名称 Addendum to Security Specification v1.1 ?C In-Band Security for Simplex Connections
发布日期 2002-07-01
工作组 Security
摘要 This addendum extends the in-band security establishment mechanism specified in [1] to support
simplex connections. The in-band security approach in [1] is only supported on duplex
connections.
The signaling-based security mechanism defined in [1] does not support the Three-Way Security
Message Exchange (SME) protocol. Therefore, signaling-based security cannot support
algorithm negotiation or certificate exchange and requires time synchronization. The main reason
for this limitation is that the number of end-to-end flows (messages) that are required to support
these services does not match the number of end-to-end flows in signaling. These services
require three signaling flows and an acknowledgment flow. Adding a fourth flow to the signaling
protocols to support security would solve this problem but would have a larger impact than the
approach listed here.
The simplex in-band approach, specified herein, supports the use of the Three-Way SME protocol
for securing simplex VCs (that is, VCs with zero return bandwidth). This approach uses the in-band
mechanism specified in [1], which solves the limitations of the signaling approach (which
was previously the only approach available for securing simplex VCs). However, to support the
in-band SME protocol, the intervening network and security agents must support and establish
duplex VCs. Furthermore, since this mechanism uses the Security Services Information Element
(SSIE) in signaling messages, the network that connects the Security Agents (SAs) must support
transport of the SSIE in signaling.
The in-band simplex security approach is named such because the SME protocol is not performed
in signaling, but “in-band” on a separate temporary duplex connection.
页数 15
全文上线日期 2003-07-14
全文下载
 PDF (197K)  
  需要安装Acrobat Reader插件,详情参考使用说明
  只有通标网D、F、G、W、X、Y网员可以访问该资源。
·为保障您的浏览器正常下载此文件,请将本网站加入信任站点。设置详情>>


热卖光盘
·通信工程_传输布线
·通信工程_无线网络
·TD-LTE标准全文光盘
·LTE FDD标准全文光盘
·物联网标准全文光盘
更多..


关于我们 用户中心 友情链接
主办:中国通信标准化协会  维护:通信标准化推进中心 京ICP备05002969号-3
服务热线:010-82054513 
Copyright© 2007 www.ptsn.net.cn. All Rights Reserved.