家庭物联网中基于SDN的入侵检测防御机制  被引量：8

作　　者：王赟 于尧[3] 赵雨佳 侯贺明 李凤云[3] WANG Yun;YU Yao;ZHAO Yu-jia;HOU He-ming;LI Feng-yun(Wuhan GreeNet Information Service Co.,Ltd.,Wuhan 430074,China;School of Computer Science,Inner Mongolia University,Huhhot 010021,China;School of Computer Science and Engineering,Northeastern University,Shenyang 110004,China)

机构地区：[1]武汉绿色网络信息服务有限责任公司,湖北武汉430074 [2]内蒙古大学计算机学院,内蒙古呼和浩特010021 [3]东北大学计算机科学与工程学院,辽宁沈阳110004

出　　处：《控制工程》2021年第5期1027-1032,共6页Control Engineering of China

基　　金：国家自然科学基金资助项目(61941113);中央高校基本科研业务费专项资金资助项目(N2116003,N2116011)。

摘　　要：为了提高家庭物联网系统的安全性,并针对缺少统一认证和授权机制,安全性差的问题,提出了一种基于软件定义网络(SDN)的入侵检测机制。首先在认证授权部分,提出基于椭圆曲线加密(ECC)算法的认证方案和基于OAuth协议的服务授权方案,减少物联网设备计算压力的同时保证安全框架的通用性;然后在入侵检测部分,提出基于深度学习的入侵检测方案,将SDN控制器的流表统计功能与深度学习模型相结合,设计并实现入侵检测模块;最后,设计基于Floodlight控制器的入侵检测防御系统平台,并利用Mininet仿真工具对家庭物联网环境进行模拟,通过仿真分析,评估和验证了该入侵检测防御机制的正确性和有效性。To improve the security of the home Internet of Things(IoT)systems,and solve the problems of lacking unified authentication and authorization mechanism and poor security in the existing research,this paper puts forward an intrusion detection mechanism based on software defined network(SDN).Firstly,in the authentication and authorization part,an authentication scheme based on elliptic curve cryptography(ECC)algorithm and a service authorization scheme based on OAuth protocol are presented to reduce the computing pressure of IoT devices while ensuring the versatility of the security framework.Then,in the intrusion detection part,a deep learning-based intrusion detection scheme is proposed.Specifically,an intrusion detection module is designed and implemented by combining the flow table statistics function of the SDN controller with the deep learning model.Finally,a Floodlight controller-based intrusion detection and defense system platform is designed,and the home Internet of Things environment is simulated by the Mininet simulation tool.The correctness and effectiveness of the proposed intrusion detection and defense mechanism are evaluated and verified through simulation analysis.

关 键 词：家庭物联网 软件定义网络 入侵检测 深度学习 

分 类 号：TN918[电子电信—通信与信息系统]