基于区块链和域信任度的物联网跨域信任评估模型  被引量：3

作　　者：潘雪 袁凌云[1,2] 黄敏敏 PAN Xue;YUAN Lingyun;HUANG Minmin(College of Information Science and Technology,Yunnan Normal University,Kunming 650500,China;Key Laboratory of Educational Information for Nationalities,Ministry of Education,Yunnan Normal University,Kunming 650500,China)

机构地区：[1]云南师范大学信息学院,昆明650500 [2]云南师范大学民族教育信息化教育部重点实验室,昆明650500

出　　处：《计算机工程》2023年第5期181-190,共10页Computer Engineering

基　　金：国家自然科学基金(62262073);云南省应用基础研究计划项目(202101AT070098);云南省万人计划青年拔尖人才项目(YNWR-QNBJ-2019-237);云南师范大学信息学院研究生科研创新基金(CIC2022007,CIC2022002)。

摘　　要：不同信任域发生跨域访问时需要评估不同域之间的信任关系,现有的信任评估关系仅针对终端设备,但在实际应用场景中,部分通信往往以域形式出现,并根据域整体的信任评估关系给予其访问权限。为高效安全地实现跨域访问,保证信任评估环境的可信度,引入域信任度的概念,将区块链与域信任度相结合,建立基于区块链和域信任度的物联网跨域信任评估模型。根据物联网跨域访问需求,构建物联网跨域信任评估模型系统架构和多域环境下的网络结构。在此基础上,提出多维度用户节点信任度及域信任度评估方法,设计基于区块链和域信任度的跨域访问合约,并对模型的信任度、安全性和区块链网络性能等进行实验分析和性能测试。实验结果表明,与BC-RBAC相比,该评估模型用户信任度评估更加细腻,能有效防止时间开关攻击,保证域信任度处于较稳定的水平,与EigenTrust、PeerTrust模型相比,恶意用户节点检测率提升了8%和12%,能在更短时间内检测出更多的恶意用户节点,可有效解决物联网跨域信任评估中的安全性问题。The trust relationships between different trust domains must be evaluated when cross-domain access occurs between them.The application of existing trust evaluation relationships is limited to terminals.However,in actual application scenarios,domain communication partially occurs in the form of domains and the access permission is granted according to their overall trust evaluation relationship.To implement cross-domain access efficiently and safely in the form of domains and ensure the credibility of trust evaluation environment,this paper introduces the concept of domain trust,combines blockchain with domain trust,and proposes a cross-domain trust evaluation model based on blockchain and domain trust for Internet of Things(IoT).First,the system architecture of the cross-domain trust evaluation model of the IoT and network structure in the multi-domain environment are constructed according to the cross-domain access requirements of the IoT.Then,based on these,a multi-dimensional evaluation method of user node trust and domain trust is proposed.Furthermore,a cross-domain access contract based on blockchain and domain trust is designed.Finally,the reliability,security,and performance of the blockchain network are analyzed and tested experimentally.The results show that,compared to BC-RBAC,the proposed model is more delicate in terms of user trust evaluation,effective prevention of time switch attack,which ensures that the trust degree of the domain is in a stable level.Compared to the EigenTrust and PeerTrust models,the detection rate of malicious user nodes was higher by 8%and 12%,respectively,and more malicious user nodes were detected in a shorter time.Thus,the proposed method can effectively address the security concern in the evaluation of cross-domain trust in the IoT.

关 键 词：物联网 区块链 跨域 信任评估 域信任度 

分 类 号：TP309.2[自动化与计算机技术—计算机系统结构]