ETRI-Knowledge Sharing Plaform

KOREAN
논문 검색
Type SCI
Year ~ Keyword

Detail

Conference Paper The Design and Implementation of MAC Security in EPON
Cited 13 time in scopus Download 6 time Share share facebook twitter linkedin kakaostory
Authors
Kyeong Soo Han, Kwang Ok Kim, Tae Whan Yoo, Yul Kwon
Issue Date
2006-02
Citation
International Conference on Advanced Communication Technology (ICACT) 2006, pp.1673-1676
Language
English
Type
Conference Paper
Project Code
05MT1100, Optical Subscriber and Access Network Technology, Kim Bong Tae
Abstract
Because Ethernet passive optical network (EPON) is based on shared-medium network and a point-to-multipoint optical tree configuration, frames transmitted to any ONU are actually broadcast simultaneously to all ONUs. In EPON, the security of data transmission is critical in protecting the privacy of users and confidentiality of their communication. The MACsec is a link security method proposed by IEEE802.1AE WG and under standardization. We implement the MACsec on the basis of Draft suggested by IEEE802.1AE. Our MAC Security (MACsec) provides user data confidentiality, frame data integrity check, and data origin authentication. Also, it provides protection of security threats such as replay attack and DoS attack, etc. These security protections are provided by 128-bit GCM-AES cipher mechanism. We designed the function of MACsec, and implemented it in HDL. Then, we developed two kinds of EPON MAC ASICs using 0.18um CMOS process, MACsec is a part of these chips.
KSP Keywords
0.18um CMOS, AES Cipher, CMOS Process, Data Integrity, Data origin Authentication, Data transmission, DoS Attacks, Ethernet Passive Optical Network, Frame data, Integrity check, MAC security