组播技术是一种新的、高效的网络传输机制。它提供了一种一到多或者多到多的通信策略,能够有效地节约网络带宽、降低网络负载,所以在实时数据传送、多媒体会议、网络游戏等诸多方面都有广泛的应用。但是安全问题却阻碍了组播技术的进一步应用。虽然单播的安全问题己经得到较好的解决,但是由于组播体系结构比单播更加复杂,因此组播通信安全仍然存在很多问题值得进一步研究。本文重点研究Internet组管理协议(Internet Group Management Protocol,简称IGMP)的原理和扩展性,首先列举了一些现有的组成员的认证技术并着重分析了Kerberos认证协议,然后分析了现有的Internet组管理协议的三个版本,最后利用组管理协议的第三版(IGMPv3)的扩展性提出了K认证组管理协议(Kerberos Authenticate Internet Group Management Protocol,简称KIGMP),在组管理的同时完成认证功能。%Multicast technology is a new and efficient mechanism for network transmission. It provides"one to many"and"many to many"communications strategy, which can effectively save network bandwidth and reduce network load. Therefore , multicast technology have a wide range of applications in real-time data transmission, multimedia conferencing, online games and many other fields. But security problems have hampered the further application of multicast technology.This paper focuses on the principles and the scalability of the Internet Group Management Protocol(IGMP). First of all, this thesis listed some existing group member authenticated technology and focused on Kerberos authentication protocol. Then we analyzed three versions of Internet Group Management Protocol . Finally, we proposed a new authentication protocol KIGMP (Kerberos Authenticate Internet Group Management Protocol(KIGMP), using the scalability of the third version of IGMP(IGMPv3), which can authenti-cate and manage group members at the same time.
展开▼
