节点文献
不可信嵌入式平台下的安全传输方案
Secure transmission scheme for untrusted embedded platform
【摘要】 为便捷地实现互联互通,越来越多的设备和系统接入互联网,但同时带来了越来越严重的安全隐患。针对不可信嵌入式平台,设计了1套安全传输方案。该方案限制终端网卡的行为,通过一系列认证协议,使其仅能够与事先指定的服务器进行通信,不受攻击者控制。为实现这一方案,设计实现了一款加密网卡。结合了嵌入式网卡和加密网卡的特点,并通过硬件方式进行配置。实验表明,基于这款加密网卡,能够实现终端与服务器间的加密通信,并能够防御监听和冒充攻击,达到了安全传输的设计目标。
【Abstract】 In order to connect different devices,more and more devices and systems are connected to the Internet.At the same time,these devices and systems are threatened by attackers from the Internet.To solve this problem,a secure transmission scheme was designed for untrusted embedded platform.In this scheme,the behavior of end-point network cards was limited to prevent attackers to take control.They could only communicate with a previous designated server with a series of authentication protocol.To achieve this scheme,an encrypted network card is implemented.This network card combined the feature of embedded network card and encrypted network card,and can only be configured in hardware mode.Experiments show that encrypted communication between end points and server is secured,monitoring and counterfeit attacks can be prevented,and the goal of secure transmission is accomplished.
【Key words】 network security; encrypted network card; untrusted platform; embedded network card;
- 【文献出处】 中国科技论文 ,China Sciencepaper , 编辑部邮箱 ,2016年14期
- 【分类号】TP309
- 【被引频次】1
- 【下载频次】46