Authenticated key distribution protocol in universal network

Universal network and pervasive service is one kind of new network architecture. In this architecture, in order to guarantee the security of access network and terminal, terminal access control and access network authentication must both be implemented. Terminal unified access control method based on identifier realizes unified access control of various terminals, authentication of authentication center, and key negotiation between access switching router and terminal. But it does not consider the authentication of access switching router. So the attacker can impersonate legitimate access switching router to acquire the information of the terminal, thus brings threats to terminal´s security. Aiming at this problem, a provably secure authenticated key distribution protocol AKDP is put forward in this paper. This new protocol can effectively protect unauthorized terminal access network, prevent unauthentic authentication center from cheating the terminal, avoid impersonation of illegal access switching router, and guarantee the freshness of the session key. It is provably secure based on BR extended model. Through performance analysis, the protocol has high efficiency.