Research on self-adapted security cooperation framework based on peer-to-peer network
-
摘要: 提出一种新型的基于对等网络架构的无集中的安全协作框架.灵活有效地支持多种安全服务,如安全管理、安全数据的存储和共享、安全信息发布等;给出了一种适应大规模动态网络环境的支持管理结构自动构造和安全组件自配置的层次和对等方式混合的安全管理方法;基于P2P(Peer-to-Peer)网络的动态特性实现了安全协作框架对于节点变化和安全协作需求的自适应;无集中的结构消除了集中管理的性能和带宽瓶颈,在网络攻击状态下有较强生存能力.Abstract: A new decentralized security cooperation framework based on P2P(peer-to -peer) network was proposed which supported many kinds of security service such as se cu rity management, the storage and sharing of security related data and distributi on of security information.A security management method which supports the robot icized construction of management structure and self-configuration of security c omponents under large-scale and dynamic network environment by the mixture of h i berarchy and peer-to-peer structure was presented. The dynamic change of secur it y components and requirements of security cooperation is self-adapted with the h elp of dynamic property of peer-to-peer architecture. Its decentralized archit ec ture eliminates the performance and bandwidth bottleneck of centralized manageme nt and has good survivability under node failure and network attack.
-
Key words:
- P2P(peer-to-peer) /
- security cooperation /
- framework /
- security management /
- self -adapted
-
[1] Peter G, Neumann,Phillip A, et al. Experience with EMERALD to Date . In:First USENIX Workshop on Intrusion Detection and Network Monitoring . California:Santa Clara, 1999. 73~80 [2]Eugene H, Spafford, Deigo Zamboni. AAFID:Intrusion detection using autonomous agents[J]. Computer Networks, 2000,34:547~570 [3] 徐传福. 基于P2P的广域网内容发布系统关键技术研究 . 长沙:国防科技大学计算机学院,2003 Xu Chuanfu. Research on key technology of wan content distribution system based on peer-to-peer technology . Changsha:School of Computer Science, National University of Defence Technology, 2003(in Chinese) [4] Stoica I, Morris R, Karger D, et al. Chord:A scalabl peer-to-peer lookup service for Internet applications . MIT-TR-819, 2001 [5]Zhao B Y, Kubiatowicz J D, Joseph A D. Tapestry:An infrastructure for fault-resilient wide-area location and routing . UCBCSD-01-1141, 2001 [6]Sameh El-Ansary, Luc Onana Alima, Per Brand, et al. Efficient broadcast in structured P2P networks . In:Michal Feldman, Shelley Zhuang, eds. Peer-to-Peer Systems II:Second International Workshop . Heidelberg:Springer-Verlag, 2003. 304~314 期刊类型引用(8)
1. 陈钊渊,吴优,张娜,马超,王国仕,罗林波. 物联网恶意流量检测下基于改进Apriori算法的关联数据回溯分析. 自动化与仪器仪表. 2024(01): 52-55 . 
百度学术2. 曹伟康,林宏刚. 基于加权特征融合的物联网设备识别方法. 计算机科学. 2024(S2): 885-893 . 百度学术3. Yu Zhang,Bei Gong,Qian Wang. BLS-identification: A device fingerprint classification mechanism based on broad learning for Internet of Things. Digital Communications and Networks. 2024(03): 728-739 . 必应学术4. 李志华,王志豪. 基于LCNN和LSTM混合结构的物联网设备识别方法. 信息网络安全. 2023(06): 43-54 . 百度学术5. 余长宏,陆雅,王海鑫,高明. 基于滑动时间窗的物联网设备流量分类算法. 计算机工程. 2023(07): 259-268 . 百度学术6. 崔蕾,周湘贞,王枚. 基于区块链和雾计算的IoT轻量级身份验证和访问控制. 贵阳学院学报(自然科学版). 2023(03): 33-39 . 百度学术7. 师小龙,陈浩林,王佳康,尹昱成,徐一楠,台永丰,杨睿,李燕飞. 基于随机森林的轨道交通成本关键要素辨识方法. 中国高新科技. 2022(06): 76-78 . 百度学术8. 赵季红,乔琳琳,王颖. 基于多任务和卷积神经网络的业务识别算法. 西安邮电大学学报. 2021(01): 1-6 . 百度学术其他类型引用(13)
-
百度学术
点击查看大图
计量
- 文章访问数: 4130
- HTML全文浏览量: 211
- PDF下载量: 751
- 被引次数: 21
下载:
