关于IMC/IMV的网络设备可信认证方法研究

doi:10.3778/j.issn.1002-8331.1802-0024

计算机工程与应用 ›› 2019, Vol. 55 ›› Issue (9): 79-86.DOI: 10.3778/j.issn.1002-8331.1802-0024

关于IMC/IMV的网络设备可信认证方法研究

刘丽伟1，孙践知1，谭励1，杨斌2

1.北京工商大学计算机与信息工程学院食品安全大数据技术北京市重点实验室，北京 100048
2.中国人民解放军 96901部队 25分队

出版日期:2019-05-01 发布日期:2019-04-28

Research on Trusted Authentication Method of Network Device Based on IMC/IMV

LIU Liwei1, SUN Jianzhi1, TAN Li1, YANG Bin2

1.School of Computer and Information Engineering, Beijing Technology and Business University, Beijing 100048, China
2.Unit 96901 Force 25 of PLA, China

Online:2019-05-01 Published:2019-04-28

摘要/Abstract

摘要： 近年来，网络设备的安全问题日益凸显。如果网络设备不可信，网内所有计算机都可能面临被攻击的危险，所有数据也都可能面临被窃取的危险。所以网络设备是否安全地接入网络直接影响到整个网络的安全。提出了一种基于IMC/IMV的网络设备可信认证方法，在完成传统的平台身份认证的同时，进行平台可信状态验证，通过设计的完整性收集器（Integrity Measurement Collector，IMC）收集网络设备的可信状态信息，通过协议的多轮交互提交给完整性验证器（Integrity Measurement Verifier，IMV）进行验证，完成平台的完整性认证。实验表明，这种认证方式在实现网络设备的可信认证的同时，对系统性能的影响不大。

关键词: 可信网络, 设备认证, 完整性收集器（IMC）, 完整性验证器（IMV）

Abstract: In recent years, the security issues on network device have been increasingly prominent. If the network devices are not trusted, all computers in the net are likely to be in the risk of being attacked and all data being stolen. Whether the network devices access network in security or not directly affects the safety of the whole network. It presents a trusted authentication method based on IMC/IMV for network devices. Under this method, the traditional platform identity authentication is carried out and the trusted status verification of the platform is carried out too. The network device’s trusted status information is collected by Integrity Measurement Collector（IMC） and verified by Integrity Measurement Verifier（IMV）, to which the information are submitted by multiple rounds protocol interactions. The final experiments show that this authentication method effects little on system performance when the network device are under trusted authentication.

Key words: trusted network, device authentication, Integrity Measurement Collector（IMC）, Integrity Measurement Verifier（IMV）

刘丽伟1，孙践知1，谭励1，杨斌2. 关于IMC/IMV的网络设备可信认证方法研究[J]. 计算机工程与应用, 2019, 55(9): 79-86.

LIU Liwei1, SUN Jianzhi1, TAN Li1, YANG Bin2. Research on Trusted Authentication Method of Network Device Based on IMC/IMV[J]. Computer Engineering and Applications, 2019, 55(9): 79-86.

[1]	邹建文，赵波，李想，刘一凡，黎佳玥. 基于tPUF的物联网设备安全接入方案[J]. 计算机工程与应用, 2021, 57(2): 119-126.
[2]	郭树凯1，田立勤2，沈学利1. FAHP在用户行为信任评价中的研究[J]. 计算机工程与应用, 2011, 47(12): 59-61.
[3]	李洁，吴振强，于璐，孙鹏. 增强的无线TNC证实模型及协议设计[J]. 计算机工程与应用, 2010, 46(7): 121-124.
[4]	王同洋，余鹏飞，吴俊军，张新访. 数据摆渡在安全移动存储中的应用研究[J]. 计算机工程与应用, 2010, 46(28): 114-117.
[5]	冀铁果¹，田立勤²，胡志兴³，孙锦霞¹. 可信网络中一种基于AHP的用户行为评估方法[J]. 计算机工程与应用, 2007, 43(19): 123-126.

关于IMC/IMV的网络设备可信认证方法研究

Research on Trusted Authentication Method of Network Device Based on IMC/IMV

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 5

编辑推荐

Metrics