Authentication method for link protection in Ethernet passive optical network
First Claim
1. An authentication method for link protection in an Ethernet Passive Optical Network (EPON) including an Optical Line Terminal (OLT) connected to other network systems and a plurality of Optical Network Units (ONUs) located at a subscriber side of the EPON, the method comprising steps of:
- distributing an authentication key to both the OLT and an ONU in the EPON;
generating first and second random values in one of the OLT and the ONU, generating an authentication request frame containing the first and second random values in the one of the OLT and the ONU, and transmitting the authentication request frame from the one of the ONU and OLT to the other thereof;
generating a first hash value according to a predetermined function using the first and second random values contained in the authentication request frame in the other of the ONU and OLT, and transmitting an authentication response frame containing the first hash value from the other of the ONU and OLT to the one thereof; and
comparing, in the one of the OLT and the ONU, the first hash value contained in the authentication response frame with a second hash value calculated by the one of the OLT and the ONU according to the predetermined function using the first and second random values and an authentication key distributed to the one of the OLT and the ONU, and transmitting an authentication confirmation frame containing an authentication result value indicating a result of the comparison from the one of the OLT and the ONU to the other thereof, wherein the steps performed by the ONU and the OLT are interchangeable.
1 Assignment
0 Petitions
Accused Products
Abstract
An authentication method for link protection between an OLT and an ONU newly connected thereto in an EPON, which is implemented in a data link layer to which cryptography is applied. First, an authentication key is distributed to both the OLT and an ONU. The OLT (or ONU) generates first and second random values, generates an authentication request frame containing the random values, and transmits it to the ONU (or OLT). The ONU generates a first hash value according to a hash function using the random values contained in the request frame, and transmits an authentication response frame containing the first hash value to the OLT. The OLT compares the first hash value with a second hash value calculated by it according to the has function using the two random values and an authentication key distributed to it, and transmits an authentication result frame to the ONU.
-
Citations
12 Claims
-
1. An authentication method for link protection in an Ethernet Passive Optical Network (EPON) including an Optical Line Terminal (OLT) connected to other network systems and a plurality of Optical Network Units (ONUs) located at a subscriber side of the EPON, the method comprising steps of:
-
distributing an authentication key to both the OLT and an ONU in the EPON; generating first and second random values in one of the OLT and the ONU, generating an authentication request frame containing the first and second random values in the one of the OLT and the ONU, and transmitting the authentication request frame from the one of the ONU and OLT to the other thereof; generating a first hash value according to a predetermined function using the first and second random values contained in the authentication request frame in the other of the ONU and OLT, and transmitting an authentication response frame containing the first hash value from the other of the ONU and OLT to the one thereof; and comparing, in the one of the OLT and the ONU, the first hash value contained in the authentication response frame with a second hash value calculated by the one of the OLT and the ONU according to the predetermined function using the first and second random values and an authentication key distributed to the one of the OLT and the ONU, and transmitting an authentication confirmation frame containing an authentication result value indicating a result of the comparison from the one of the OLT and the ONU to the other thereof, wherein the steps performed by the ONU and the OLT are interchangeable. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
Specification