基于PKG信任网关的信息共享密钥安全性检测  

作　　者：贾万祥 张平华 JIA Wanxiang;ZHANG Pinghua(School of Intelligent and Information,Wanbo Institute of Science and Technology,Hefei 230088,China;School of Information Engineering and Media,Hefei Technology College,Hefei 238010,China)

机构地区：[1]万博科技职业学院智能信息学院,安徽合肥230088 [2]合肥职业技术学院信息工程与传媒学院,安徽合肥238010

出　　处：《河南工程学院学报（自然科学版）》2024年第2期62-66,共5页Journal of Henan University of Engineering：Natural Science Edition

基　　金：安徽省高校自然科学研究项目(KJ2020A1172);安徽省高校质量工程项目(2020jyxm2163);安徽省高等学校2020年拔尖学科(专业)人才学术资助项目(gxbjZD2020116)。

摘　　要：入侵行为种类的不断增加对网络安全造成了严重威胁,故在建立PKG信任网关模型后,针对信息共享密钥提出了一种安全性检测方法。对数据做预处理操作后,分析了两种不同入网方式下,PKG信任网关对节点的认证方式,节点只有在通过认证后才能入网。PKG信任网关与新入网的节点之间通过密钥链发送共享密钥和校验值,通过比对校验值判断共享密钥是否被篡改或攻击,校验值不同说明共享密钥被攻击,需要向PKG信任网关汇报被攻击的密钥;校验值相同说明共享密钥没有被攻击,可以解密后获得会话密钥。根据相关实验可知,所提方法可针对不同种类入侵行为实现精准检测,同时保证最高的检测效率和最低的误检率。Due to the increasing variety of intrusion behaviors,which pose a serious threat to network security,a security detection method for information sharing keys is proposed after establishing a PKG trust gateway model.After preprocessing the data,the authentication methods of PKG trust gateway for nodes under two different forms of network access are analyzed.Nodes can only access the network after passing the authentication.The PKG trust gateway sends the shared key and the verification value between the newly accessed nodes through a key chain,and judges whether the shared key has been tampered with or attacked by comparing the verification value.If the verification value is different,it indicates that the shared key has been attacked,and reports the attacked key to the PKG trust gateway;if the verification values are the same,it indicates that the shared key has not been attacked and can be decrypted to obtain the session key.Through relevant experimental tests,the proposed method can achieve accurate detection for different types of intrusion behaviors,while ensuring the highest detection efficiency and the lowest false detection rate.

关 键 词：PKG信任网关 密钥链 校验值 认证请求 共享密钥 

分 类 号：TP343[自动化与计算机技术—计算机系统结构]