信息工程大学学报2024,Vol.25Issue(2):227-234,8.DOI:10.3969/j.issn.1671-0673.2024.02.015
基于软件定义安全的配电物联网分组转发异常检测
Packet Forwarding Abnormality Detection in Power IoT Based on Software-Defined Security
摘要
Abstract
Malicious packet injection,tampering,dropping and hijacking attacks exist in the remote communication between the cloud platform and the edge devices in the power Internet of Things with the architecture of"Cloud,Network,Edge and Terminal".An abnormality detection mechanism in power Internet of Things based on software-defined security is proposed,which overcomes the draw-backs of computation and bandwidth overhead incurred by inserting cryptographic tags that increase linear-scally as path lengthen in the traditional network.Based on the software-defined architec-ture,a flow running time is split into consecutive random epoch by address hopping.Each switch forwards packets according to the hopping address,the ingress and egress switch samples packets and generates traffic sketch in each epoch,and the controller detect abnormality based on the sketch.The proposed scheme is implemented and evaluated.The analyses and experiments demon-strate that the communication overhead of the proposed mechanism is less than the existing mecha-nisms,with less than 11%of additional forwarding delay and no more than 10%of throughput deg-radation.Therefore,the proposed scheme could effectively detects abnormality.关键词
软件定义/配电物联网/流量梗概/分组转发/异常检测Key words
software-defined/power Internet of Things/traffic sketch/packet forwarding/abnor-mality detection分类
信息技术与安全科学引用本文复制引用
吴平,孙浩洋,周莉梅,尚宇炜,高飞..基于软件定义安全的配电物联网分组转发异常检测[J].信息工程大学学报,2024,25(2):227-234,8.基金项目
国家电网科学技术基金资助项目(5400-202255159A-1-1-ZN) (5400-202255159A-1-1-ZN)
