一种基于Intel SGX的信息中心网络隐私保护方案  被引量:3

A Privacy Protection Scheme for Information-Centric Networking Based on Intel SGX

在线阅读下载全文

作  者:唐雨 张驰[2] TANG Yu;ZHANG Chi(Institute of Advanced Technology,University of Science and Technology of China,Hefei 230031,China;School of Cyber Science and Technology,University of Science and Technology of China,Hefei 230022,China)

机构地区:[1]中国科学技术大学先进技术研究院,合肥230031 [2]中国科学技术大学网络空间安全学院,合肥230022

出  处:《信息网络安全》2023年第6期55-65,共11页Netinfo Security

基  金:国家自然科学基金重点项目[U19B2023];国家重点研发计划[2018YFB0804201]。

摘  要:信息中心网络作为一种新型的网络架构,能够最大化利用网络带宽,实现快速、可靠、可扩展的内容交互服务。但是,由于信息中心网络的路由节点需要承担包括数据存储、名称检索等功能,其软硬件架构相对于传统网络而言也更复杂,这导致网络基础设施的安全性更加脆弱。文章提出一种基于可信执行环境的信息中心网络隐私保护方案,使用跳表实现网络主要内存数据的存储,并利用Intel SGX提供的可信执行环境保证存储在不可信内存数据的机密性和完整性,之后在此基础上提出一种保护网络内容包名称隐私的转发方案。实验结果表明,该方案在提供更高安全性的同时,其网络平均接收时延仅比NDN基本方案高10%左右。As a novel network architecture,Information-Centric Networking(ICN)maximizes the utilization of network bandwidth and provides fast,reliable,and scalable content exchange services.However,the routing nodes in ICN are required to perform additional functions,such as data storage and name retrieval,making their software and hardware architecture more complex than traditional networks.This complexity can lead to increased vulnerabilities in the network infrastructure.Therefore,this paper proposed a privacy protection scheme for ICN based on a trusted execution environment.The scheme used skip lists to store the primary memory data within the network and leveraged the trusted execution environment provided by Intel SGX to ensure the confidentiality and integrity of data stored in untrusted memory.Furthermore,a forwarding scheme was proposed to protect the privacy of network content packet names.The experimental results demonstrate that the proposed approach can provide enhanced security,with only a slight increase of approximately 10%in average network-level latency compared to the NDN baseline solution.

关 键 词:信息中心网络 可信执行环境 Intel SGX 隐私保护 

分 类 号:TP309[自动化与计算机技术—计算机系统结构]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象