-
公开(公告)号:KR101272897B1
公开(公告)日:2013-06-11
申请号:KR1020120034927
申请日:2012-04-04
Applicant: 한국철도기술연구원
CPC classification number: H04L9/0866 , H04L9/0631 , H04L9/0637 , H04L9/3242 , H04L9/3263 , H04L2209/84
Abstract: PURPOSE: A MAC(Medium Access Control) layer-based secure communication device for wireless railway control signal transmission of an on-board system is provided to abstain from falsification of a receiver address of a MAC frame by an unauthenticated person and to perfectly react to the risk of content modulation of the MAC frame. CONSTITUTION: A MAC layer-based secure communication device for wireless railway control signal transmission comprises an authentication module(110), a receiver address encryption module(120), a head generation module(130), a MIC generation module(140), an encryption/decryption module(150), and a head check module(160). The authentication module generates an authenticated key and an ephemeral key between an on-board railway control system and a railway base station. The receiver address encryption module encrypts a receiver address of a MAC frame so that a receiver address field of the MAC frame is generated. The head generation module generates an OBCS(Open on-Board Control system) head field. The MIC generation module generates an OBCS MIC field. The encryption/decryption module encrypts or decrypts data and OBCS MIC field. The head check module checks the OBCS head field. [Reference numerals] (110) Authentication module; (122) Block generation module; (124) Address encryption module; (132) PN division module; (134) Head combination module; (142) Nonce generation module; (144) AAD generation module; (146) MIC encryption module; (150) Encryption/decryption module; (160) Head check module
Abstract translation: 目的:提供一种用于车载系统的无线铁路控制信号传输的基于MAC(Medium Access Control,MAC)的基于层的安全通信装置,以防止未经身份验证的MAC帧的接收者地址的伪造,并对 MAC帧内容调制的风险。 构成:用于无线铁路控制信号传输的基于MAC层的安全通信装置包括认证模块(110),接收机地址加密模块(120),头生成模块(130),MIC生成模块(140), 加密/解密模块(150)和头部检查模块(160)。 验证模块在车载铁路控制系统和铁路基站之间生成认证密钥和短暂密钥。 接收机地址加密模块加密MAC帧的接收机地址,从而生成MAC帧的接收机地址字段。 头部生成模块生成OBCS(开放式板载控制系统)头部字段。 MIC生成模块生成OBCS MIC字段。 加密/解密模块加密或解密数据和OBCS MIC字段。 头部检查模块检查OBCS头部字段。 (附图标记)(110)认证模块; (122)块生成模块; (124)地址加密模块; (132)PN分割模块; (134)头组合模块; (142)随机发电模块; (144)AAD生成模块; (146)MIC加密模块; (150)加密/解密模块; (160)头部检查模块
Search Results
21
records
(took 0.018 seconds)
