摘 要:ADS-B 产生的假目标会严重影响飞行安全,文章针对此情况,提出了一种 ADS-B 飞机身份认证和数据加密方案,确保飞行目标身份的真实性和通信数据的机密性。该方案考虑到了机载设备的特殊性,提出了一种负载转移的改进RSA签名方案,将机载设备的大部分签名运算转移到了地面设备来完成。同时该方案对地空数据链进行了加密处理,保证了地空通信数据的机密性、完整性和防否认性,可有效抵抗各种假目标和非法数据攻击。
关键词:ADS-B;RSA;模幂运算;数据加密;身份认证;PKI
DOI:10.19850/j.cnki.2096-4706.2022.19.030
基金项目:云南省教育厅项目(2021J0571)
中图分类号:TP309.7 文献标识码:A 文章编号:2096-4706(2022)19-0124-04
An ADS-B Aircraft Identity Authentication and Data Encryption Scheme of Improved RSA Algorithm
LI Yunfei 1, LIU Jukun2
(1.Graduate School, Yunnan University of Finance and Economics, Kunming 650221, China; 2.International Cooperation and Exchange Center, Yunnan University of Chinese Medicine, Kunming 650500, China)
Abstract: Aiming at the situation that the false targets produced by the ADS-B can seriously affect flight safety, this paper proposes an ADS-B aircraft identity authentication and data encryption scheme to ensure the authenticity of the flight target identity and the confidentiality of the communication data. Considering the particularity of airborne equipment, the scheme proposes an improved RSA signature scheme of load transfer, in which most of the signature operation of airborne equipment is transferred to ground equipment to complete. At the same time, the scheme encrypts the ground-air data link to ensure the confidentiality, integrity and anti-denial of the ground-air communication data, and can effectively resist all kinds of false targets and illegal data attacks.
Keywords: ADS-B; RSA; modular exponentiation; data encryption; identity authentication; PKI
参考文献:
[1] 王党卫 . 广播式自动相关监视(ADS—B)系统及其发展趋势分析 [J]. 导航,2002,38(4):9.
[2] SMITH A E,HULSTROM R,EVERS C A,et al.Method and Apparatus for ADS-B Validation,Active and Passive Multilateration and Elliptical Suveillance,EP1906204 [P].2009-12-30.
[3] SMITH A,CASSELL R,BREEN T,et al.Methods to Provide System-Wide ADS-B Back-Up,Validation and Security [C]//2006 ieee/aiaa 25TH Digital Avionics Systems Conference. Portland:IEEE,2006:1-7.
[4] 关振胜 . 公钥基础设施 PKI 与认证机构 CA [M]. 北京:电子工业出版社,2002.
[5] RIVEST R L,SHAMIR A,ALDEMAN L.A Method for Obtaining Digital Signatures and Public-Key Cryptosystems [J]. Communications of the ACM,1978,21(2):120-126.
[6] STALLINGS W. 密码编码学与网络安全:原理与实践:第 2 版 [M]. 北京:电子工业出版社,2001.
[7] 李云飞,柳青,李彤,等 . 一种有效的 Batch RSA 改进算法 [J]. 小型微型计算机系统,2012,33(1):64-70.
[8] LI Y F,LIU Q,LI T.Design and Implementation of an Improved RSA Algorithm [C]//2010 International Conference on E-Health Networking Digital Ecosystems and Technologies (EDT). Shenzhen:IEEE,2010,1:390-393.
[9] 潘承洞,潘承彪 . 简明数论 [M]. 北京:北京大学出版社,1998.
[10] TAKAGI T.A Fast RSA-Type Public-Key Primitive Modulo pkq Using Hensel Lifting [J].IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences,2004,E87-A(1):94-101.
[11] CASTELLUCCIA C,MYKLETUN E,TSUDIK G.Improving Secure Server Performance by Re-Balancing SSL/TLS Handshakes [C]//ASIACCS'06:Proceedings of the 2006 ACM Symposium on Information,computer and communications security.New York: Association for Computing Machinery,2006:26-34.
作者简介:李云飞(1986—),男,白族,云南大理人,工程师,硕士,研究方向:信息安全。