面向密码协议的半实物网络仿真方法  

作　　者：董书琴[1] 张明清[1] 方哲[2] 陈强军 程建[3] 

机构地区：[1]解放军信息工程大学密码工程学院,郑州450001 [2]中国国防科技信息中心,北京100142 [3]国防信息学院,武汉430010

出　　处：《计算机应用研究》2016年第10期3061-3064,3098,共5页Application Research of Computers

摘　　要：针对常用仿真工具在进行面向密码协议的半实物(hardware-in-the-loop,HIL)网络仿真时接口不支持、密码协议仿真资源缺失、无法实现密码协议处理等问题,提出一种面向密码协议的HIL网络仿真方法。在形式化分析面向密码协议HIL网络仿真建模环境的基础上,给出了密码协议HIL网络仿真过程中用到的关键技术,构建了基于OMNe T++的HIL网络仿真模型;然后就仿真过程中存在的关键问题进行了分析,提出了有效的解决方案;最后以网际控制报文协议(Internet control message protocol,ICMP)在测试主机连通性中的应用为例,基于封装安全载荷(encapsulate security payload,ESP)协议,对面向密码协议的HIL网络仿真方法进行了仿真测试。实验结果表明,与现有HIL网络仿真方法相比,该方法可以对经ESP协议处理后的ICMP询问报文进行响应,有效地使虚实主机基于密码协议进行保密通信。In order to solve the problems of interfaces unsupported,resource deficiencies,and the inability of processing cryptographic protocols when doing cryptographic protocols oriented hardware-in-the-loop( HIL) network simulation,this paper proposed an HIL network simulation method for cryptographic protocols. By formally analyzing the modeling environment of HIL network simulation of cryptographic protocols,it gave the key technologies that were used in the process of cryptographic protocols oriented HIL network simulation,and established an HIL network simulation model based on OMNe T + +. After that,it analyzed the key questions appeared in the process of simulating cryptographic protocols,and gave effective solutions.At last,taking the application of Internet control message protocol( ICMP) in testing hosts' connectivity as an example,it tested the HIL network simulation method for cryptographic protocols based on encapsulate security payload( ESP) protocol.The simulation results show that,compared with the current HIL network simulation methods,the method for cryptographic protocols can respond the ICMP inquiry messages which are processed by ESP protocol,and effectively make virtual and real hosts do secure communications based on cryptographic protocols.

关 键 词：密码协议 半实物网络仿真 形式化建模 Cryptlib OMNET++ 封装安全载荷 

分 类 号：TP391.9[自动化与计算机技术—计算机应用技术] TP393.08[自动化与计算机技术—计算机科学与技术]