基于TrustZone的MQTT可信通信方案设计  

Design of MQTT trusted communication scheme based on TrustZone

在线阅读下载全文

作  者:朱许彬 冯兴乐[1] 陈亚聪 ZHU Xubin;FENG Xingle;CHEN Yacong(School of Information Engineering,Chang'an University,Xi'an 710064,China)

机构地区:[1]长安大学信息工程学院,西安710064

出  处:《集成电路与嵌入式系统》2024年第10期36-41,共6页Integrated Circuits and Embedded Systems

摘  要:针对现有物联网中嵌入式设备数据传输安全问题,设计了一种基于TrustZone技术的MQTT可信设备认证及数据安全传输方案。方案对MQTT通信协议进行改进,并设计了搭载该协议进行通信的网关和数据采集设备原型。通过混合国密算法实现对设备的身份认证,以及传输数据的加密和防篡改,并引入TrustZone技术对网关系统的软硬件进行隔离,保障网关中密钥、可信设备列表等数据的存储安全。安全性分析及实验结果表明,所提方案可有效提高物联网嵌入式场景中隐私数据的传输及存储安全性,满足实际的应用需求。To address the security concerns regarding the transmission of data from embedded devices in contemporary Internet of Things networks,a novel scheme for MQTT-based trusted device authentication and secure data transmission has been devised by leveraging TrustZone technology.This scheme enhances the MQTT communication protocol and includes the design of prototypes for gateways and data acquisition devices that communicate via this protocol.Device identity authentication,alongside data encryption and tamper-resistance during transmission,are achieved through the implementation of a hybrid domestic commercial cryptography algorithm.The integration of TrustZone technology facilitates the isolation of software and hardware elements within the gateway system,thereby safeguarding the secure storage of critical information such as keys and lists of trusted devices.Both theoretical security analysis and empirical testing demonstrate that the proposed solution effectively elevates the security of privacy data transmission and storage in IoT embedded contexts,aligning well with practical application requirements.

关 键 词:数据传输安全 MQTT TRUSTZONE 存储安全 安全网关 

分 类 号:TP391[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象