Research and Realization of Domestic Encryption System Based on GDOI

doi:10.3969/j.issn.1671-1122.2015.09.020

Abstract

Abstract:

Facing with the increasingly complex network environment and network application security needs, it appears all kinds of limitations when uses IPSec encryption and decryption, such as the QoS problem, the tunnel real-time problem and the multicast communication problem. Network encryption system based on GDOI protocol is gradually becoming the first choice. For the high security requirements of domestic network equipments, in use of the method that extends the private load properties in the standard RFC6407 framework, this paper completely designs a network password system that conforms to the standard GDOI protocol, supporting in extra for all kinds of custom algorithms at the same time using the national commercial code algorithms. The design and implementation of the whole system strictly follow the relevant algorithms and equipment safety requirements of the National Commercial Code Management Bureau.

Key words: GDOI Protocol, security, localization, encryption system

CLC Number:

TP309

Cai-hua ZHUO, Da-peng LI, Kai-guo YUAN. Research and Realization of Domestic Encryption System Based on GDOI[J]. Netinfo Security, 2015, 15(9): 84-88.

Figures/Tables 7

References 9

[1]	钟秀玉. 加密算法在身份验证中的应用[J].信息网络安全,2010,(5):67-68.
[2]	乾颐堂.现任明教教主GETVPN第一部分[EB/OL]. .
[3]	RFC6407.The Group Domain of Interpretation[S],2011-10.
[4]	RFC2408.Internet Security Association and Key Management Protocol (ISAKMP)[S], 1998-11.
[5]	draft-weis-gdoi-rekey-ack-01. GDOI GROUPKEY-PUSH Acknowledgement Message[S], 2014-6-3
[6]	GM/T 0022-2014.IPSec VPN技术规范M/T 0022-2014.IPSec VPN技术规范[S],2014.
[7]	周道明,钱鲁锋,王路路.透明加密技术研究[J].信息网络安全,2011,(12):54-56.
[8]	HUAWEI.AR530&AR550 V200R005C70 配置指南-VPN 01 [EB/OL]. .
[9]	季辉. 公共计算资源身份认证与安全保护的加密协议[J].信息网络安全,2011,(3):17-20.

[1]	Jianwei LIU, Yiran HAN, Bin LIU, Beiyuan YU. Research on 5G Network Slicing Security Model [J]. Netinfo Security, 2020, 20(4): 1-11.
[2]	Zhizhou FU, Liming WANG, Ding TANG, Shuguang ZHANG. HBase Secondary Ciphertext Indexing Method Based on Homomorphic Encryption [J]. Netinfo Security, 2020, 20(4): 55-64.
[3]	Zhiyan ZHAO, Xiaomo JI. Research on the Intelligent Fusion Model of Network Security Situation Awareness [J]. Netinfo Security, 2020, 20(4): 87-93.
[4]	Ning LI, Bochao LI. Token-based UTM Architecture for Mobile Internet [J]. Netinfo Security, 2020, 20(3): 18-28.
[5]	Xinglong ZHANG, Yuting LI, Qingfeng CHENG, Lulu GUO. A Browser Security Model for Preventing TLS Protocol Downgrade Attacks [J]. Netinfo Security, 2020, 20(3): 65-74.
[6]	Shuilin LI, Guobang ZHU, Chunling FAN, Guangyong CHEN. Research on a New Scoring Algorithm of Testing and Evaluation for Classified Cybersecurity Protection [J]. Netinfo Security, 2020, 20(2): 1-6.
[7]	Xiao WANG, Jun ZHAO, Jianbiao ZHANG. Research on Dynamic Monitoring Mechanism for Virtual Machine Based on Trusted Software Base [J]. Netinfo Security, 2020, 20(2): 7-13.
[8]	Weimin LANG, Han ZHANG, Yifeng ZHAO, Jinfang YAO. A Blockchain-based Behavior Regulation and Activities Management Scheme for Internet of Things [J]. Netinfo Security, 2020, 20(2): 22-29.
[9]	Mengmeng YAO, Li TANG, Yongxing LING, Weidong XIAO. Formal Analysis of Security Protocol Based on Strand Space [J]. Netinfo Security, 2020, 20(2): 30-36.
[10]	Lu YU, Senlin LUO. A Method of Internal Intrusion Detection of Database in RBAC Mode [J]. Netinfo Security, 2020, 20(2): 83-90.
[11]	Tao JING, Wei WAN. Research on a P2P Network Communication Behavior Analytical Method for Status Migration Attribute-oriented [J]. Netinfo Security, 2020, 20(1): 16-25.
[12]	Die HU, Dongtang MA, Ming GONG, Zhao MA. A Physical Layer Security Authentication Method Based on PUF [J]. Netinfo Security, 2020, 20(1): 61-66.
[13]	Chonghua WANG, Jun LI, Xuehong CHEN. Research on Industrial Internet Platform Security Protection [J]. Netinfo Security, 2019, 19(9): 6-10.
[14]	Guogang ZHENG. Implementation Methods and Technical Measures for Security Inspection of Important Information Systems [J]. Netinfo Security, 2019, 19(9): 16-20.
[15]	Meng LI. Mobile Application Security Construction of the National Medical Products Administration [J]. Netinfo Security, 2019, 19(9): 46-50.