基于有色Petri网的铁路时间同步网协议安全性分析  被引量:4

Security Analysis on Railway Network Time Protocol Based on Colored Petri Nets

在线阅读下载全文

作  者:张友鹏[1] 张昊磊 王虹 

机构地区:[1]兰州交通大学自动化与电气工程学院,甘肃兰州730070

出  处:《铁道学报》2017年第10期82-88,共7页Journal of the China Railway Society

摘  要:随着时间同步技术在铁路领域的发展,能够实时地保证时间同步协议NTP的安全运行变得至关重要。由于NTP协议自身具备一定的安全缺陷,因此,对NTP协议的安全机制进行分析十分必要。考虑到NTP协议的无连接特性,使用有色Petri网建立其在正常工作模式下的有色Petri网模型,并分析协议在进行时间同步过程中存在的漏洞。构建入侵者成功入侵协议所需要的知识集和入侵者在入侵过程中能够获取的知识集,并使用有色Petri网对NTP协议受到入侵的过程进行建模。通过逆向状态分析方法,对NTP协议进入不安全状态的可达性进行分析,使用CPNTools软件对分析结果进行仿真验证。结果表明,NTP协议的服务器身份验证过程是不安全的。With the development of time synchronization technology in the railway field, it is extremely impor-tant to ensure the safe operation of Network Time Protocol(NTP) in real time. Since NTP contains security defects itself, it is necessary to analyze the security mechanism of the NTP protocol. Firstly, taking the con-nectionless nature of NTP protocol into consideration, the Colored Petri Nets(CPN) were used to establish CPN model of NTP under the normal working mode to analyze the loopholes and vulnerabilities during the time synchronization. Then, the knowledge sets required by the intruder to successfully attack the protocol and the knowledge sets that an intruder can acquire during an attack were set up. The CPN were used to model the at-tack process of NTP protocol. Furthermore, through the reversed state analysis, the accessibility of NTP protocol into insecure state was analyzed. Finally, the analysis results were verified through CPNTools simu-lation. The results show that it is unsafe for NTP during its process of server authentication.

关 键 词:时间同步协议 漏洞 有色PETRI网 入侵 逆向状态分析法 

分 类 号:U285.5[交通运输工程—交通信息工程及控制]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象