隨著6G網路的概念被提出,為了達到全球覆蓋且無所不在的網路通訊,部署低軌衛星作為中繼站傳輸訊號的Space Information Network (SIN)被視為達成此目的關鍵架構。在SIN中,為了防止網路資源被未經授權的設備存取,身份認證是至關重要的。然而,由於傳播延遲高、傳輸路徑高度暴露、高度動態的拓墣結構的特性,使得為SIN設計安全且高效的認證機制面臨挑戰。而現有的研究並未充分考慮當大量設備同時認證時(例如在客機上的大量乘客使用SIN通訊),對低軌衛星產生的龐大計算負擔與延遲,以及各網路服務商衛星覆蓋率不足的問題。在本文中,我們提出了一種基於代理簽章的批量認證機制來提高認證效率,使用代理簽章來減少產生共享金鑰的傳輸次數。考慮到覆蓋問題,我們也設計了一個群組金鑰的方案,建立跨組織衛星間的信任傳輸,保護傳輸的資料不被竊聽。此外,我們提出了一種以區塊鏈中的智慧合約解決方案,實現衛星之間公平的利潤分享。;With the introduction of the 6G network concept, aimed at achieving global and ubiquitous network communications, deploying low Earth orbit satellites as relay stations in a Space Information Network (SIN) is considered a key infrastructure for accomplishing this purpose. In SIN, identity authentication is crucial to prevent unauthorized access to network resources. However, the characteristics of high propagation delay, highly exposed transmission paths, and a highly dynamic topological structure pose challenges in designing secure and efficient authentication mechanisms for SIN. Existing studies have not adequately considered the significant computational burden and delays caused by the simultaneous authentication of a large number of devices (e.g., when a large number of passengers on an airplane use SIN communications), nor the issue of insufficient satellite coverage by various network service providers. In this paper, we propose a batch authentication mechanism based on proxy signatures to enhance authentication efficiency, using proxy signatures to reduce the number of transmissions needed to generate shared keys. Considering the coverage issue, we also design a group key scheme to establish trusted transmissions between cross-organizational satellites, protecting transmitted data from eavesdropping. Additionally, we propose a smart contract solution in the blockchain to achieve fair profit sharing among satellites.
