物联网用户信息认证安全保护仿真研究
|
摘要
对物联网用户信息风险进行认证保护,能够高效解决物联网用户隐私信息泄露及丢失问题。对用户登录信息认证安全保护技术的研究,需要先计算用户信息的延迟间隔,计算物联网用户登录信息失效时间间隔,完成认证安全保护。传统方法构建用户信息认证安全保护策略集合,获得认证最小关键策略集,但忽略了对用户登录信息失效时长的计算,导致认证效果不理想。提出基于QoS-AFD的用户登录信息认证安全保护方法,通过分析物联网用户信息失效频率和分散程度对可能存在的.攻击进行检测,先对历史用户信息间隔时间采用幂率加权方法计算其均值,同时利用指数分布函数计算下一个用户信息的延迟间隔,通过用户信息到达时间间隔是否在设定的超时值内到达,计算用户信息失效时长。结果表明,上述方法符合物联网用户安全指标要求,而且能够保证用户信息认证安全保护的完整性要求。
The authentication and protection for information risk of user in Internet of things can effectively solve the problem about privacy information leakage and information loss. The traditional method ignores the calculation for the length of failure of user login information, resulting in the poor authentication effect. Therefore, a method of security protection for user login information authentication based on QoS-AFD was proposed. Through the analysis on the failure frequency and dispersion degree of user information in Internet of things, the possible attack was detected. Firstly, the power-law weighting method was used to calculate mean value of interval of historical user information. Meanwhile, the exponential distribution function was used to calculate the next delay interval of user information. Based on whether the arrival time interval of user information was within the set time-out value, finally, the user information failure duration was calculated. Simulation results show that the above method is coincident with the requirement of safety index of user in Internet of things. Meanwhile, the proposed method can guarantee the integrity requirement of user information authentication security protection.
The authentication and protection for information risk of user in Internet of things can effectively solve the problem about privacy information leakage and information loss. The traditional method ignores the calculation for the length of failure of user login information, resulting in the poor authentication effect. Therefore, a method of security protection for user login information authentication based on QoS-AFD was proposed. Through the analysis on the failure frequency and dispersion degree of user information in Internet of things, the possible attack was detected. Firstly, the power-law weighting method was used to calculate mean value of interval of historical user information. Meanwhile, the exponential distribution function was used to calculate the next delay interval of user information. Based on whether the arrival time interval of user information was within the set time-out value, finally, the user information failure duration was calculated. Simulation results show that the above method is coincident with the requirement of safety index of user in Internet of things. Meanwhile, the proposed method can guarantee the integrity requirement of user information authentication security protection.
引文
[1] 陈水耀,等.一种保护失效检测和动作判别特性匹配度评估方法[J].电力系统保护与控制,2016,44(12):144-148.
[2] 韩宇泽,郭湘奇,储强.基于HFCT局放测试技术的高压电缆终端失效检测方法研究[J].电测与仪表,2016,53(17):60-64.
[3] 岳猛,李坤,吴志军.云计算中基于SAPA的DoS攻击防御方法[J].通信学报,2017,38(4):129-139.
[4] 邹霞玲,彭绍琴,皮依标.基于物联网的大型地震区域监控系统设计[J].地震工程学报,2018,40(5):244-250+263.
[5] 刘泽宇,等.基于Web行为轨迹的应用层DDoS攻击防御模型[J].计算机应用,2017,37(1):128-133.
[6] 吴鹏,李贵洋.基于可信度和流控的SDN控制器DoS防御算法[J].计算机工程与设计,2017,38(2):323-327.
[7] 李凤,陈婷婷.公共网络协同防护攻击性建模仿真研究[J].计算机仿真,2017,34(6):298-301.
[8] 张晓风,张德平.基于拟似然估计方法的软件失效预测模型[J].计算机科学,2016,43(s2):486-489.
[9] 李强,等.火灾条件下电缆绝缘失效预测模型研究[J].消防科学与技术,2017,36(2):275-280.
[10] 王启林,等.基于连接认证的低功耗蓝牙泛洪攻击防御方案[J].计算机应用研究,2017,34(2):499-502.
[2] 韩宇泽,郭湘奇,储强.基于HFCT局放测试技术的高压电缆终端失效检测方法研究[J].电测与仪表,2016,53(17):60-64.
[3] 岳猛,李坤,吴志军.云计算中基于SAPA的DoS攻击防御方法[J].通信学报,2017,38(4):129-139.
[4] 邹霞玲,彭绍琴,皮依标.基于物联网的大型地震区域监控系统设计[J].地震工程学报,2018,40(5):244-250+263.
[5] 刘泽宇,等.基于Web行为轨迹的应用层DDoS攻击防御模型[J].计算机应用,2017,37(1):128-133.
[6] 吴鹏,李贵洋.基于可信度和流控的SDN控制器DoS防御算法[J].计算机工程与设计,2017,38(2):323-327.
[7] 李凤,陈婷婷.公共网络协同防护攻击性建模仿真研究[J].计算机仿真,2017,34(6):298-301.
[8] 张晓风,张德平.基于拟似然估计方法的软件失效预测模型[J].计算机科学,2016,43(s2):486-489.
[9] 李强,等.火灾条件下电缆绝缘失效预测模型研究[J].消防科学与技术,2017,36(2):275-280.
[10] 王启林,等.基于连接认证的低功耗蓝牙泛洪攻击防御方案[J].计算机应用研究,2017,34(2):499-502.