铁路通信信号工程技术2026,Vol.23Issue(2):10-16,7.DOI:10.3969/j.issn.1673-4440.2026.02.002
面向云端拜占庭故障的列控应用安全计算架构
Secure Computing Architecture for Cloud-Based Train Control Applications Under Byzantine Faults
摘要
Abstract
Cloud-native train control applications face security challenges such as logic hijacking,timing attacks,and Byzantine failures in open computing environments.To address these issues,this paper proposes a Logic-Temporal Dual-Dimension Verification(LTDV)architecture.The proposed architecture leverages Paillier homomorphic encryption to construct a logic evidence chain for verifying the integrity of program control flow,employs a temporal hash chain to bind timestamps for ensuring real-time behavior,and implements a result-driven filtering-based majority voting mechanism to achieve lightweight Byzantine fault tolerance.Experiments conducted on a cloud-based train control simulation platform for temporary speed restriction scenarios demonstrate that the proposed architecture effectively detects various types of typical attack scenarios,achieving an average detection rate of 97.8%and a false positive rate of less than 0.1%under normal operating conditions.Meanwhile,the system latency remains stable at the hundreds of milliseconds level,ensuring controlled overhead.Overall,the proposed architecture significantly enhances the trustworthiness of cloud-based train control computing within the constraints of millisecond response times,offering promising prospects for practical engineering deployment.关键词
云端列控/临时限速/逻辑验证/时序哈希链/同态加密/拜占庭容错Key words
cloud-based train control/temporary speed restriction/logic verification/temporal hash chain/homomorphic encryption/Byzantine fault tolerance分类
信息技术与安全科学引用本文复制引用
芦泽和,朱力,梁雅楠..面向云端拜占庭故障的列控应用安全计算架构[J].铁路通信信号工程技术,2026,23(2):10-16,7.基金项目
国家重点研发计划项目(2024YFB3108600) (2024YFB3108600)
北京市自然科学基金重点项目(L251011) (L251011)
