期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

KNXnet/IP协议安全性分析与改进 被引量:2

Security analysis and improvement of KNXnet/IP protocol
在线阅读 下载PDF
导出
摘要 KNXnet/IP协议作为欧洲安装总线(EIB)协议的扩展应用,提高了EIB系统的传输速率并满足了智能管理的需求,但分析表明以IP网络作为骨干网的KNXnet/IP协议在安全性要求较高的应用领域内面临严重的威胁。在分析现有IP网络安全机制及嵌入式系统特点的基础上,提出适用于EIB系统的安全加密通信协议,该安全协议以非对称加密算法为基础,使用自定义的密钥交换协议管理密钥集,设备之间使用对称加密算法通信,具有对原协议架构改动较小、提供数据透明传输的特点,协议的原型实现证明了其可行性和安全性。 As the extended application of European Installation Bus(EIB) protocol,KNXnet/IP protocol increases the transmission speed of EIB system and fulfills the requirement of intelligent management.But the security of KNXnet/IP protocol is heavily threatened in the security-critical environment.A security protocol was proposed after analyzing the security mechanism of IP network and embedded system.The security protocol used self-defined key sets distribution protocol based on asymmetric cryptography algorithm and used symmetric cryptography algorithm for communication.It provides transparent data transmission and only needs very few changes of the primary architecture.The implementation proves the feasibility and security of the security approach.
作者 刘君昌 张曦煌
机构地区 江南大学物联网工程学院
出处 《计算机应用》 CSCD 北大核心 2011年第7期1912-1916,共5页 journal of Computer Applications
关键词 KNX/EIB协议 IP骨干网 嵌入式网络 密钥集管理 椭圆曲线加密算法 KNX/EIB protocol IP backbone network embedded network key sets management Elliptic Curve Cryptography(ECC) algorithm
分类号 TP393.08 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献12

  • 1SEIP G. The future of the EIB system[J]. EIB Proceedings, 2000, 35(3):9-13.
  • 2TREYTL A, SAUTER T, SCHWAIGER C. Security measures for industrial fieldbus systems-state of the art and solutions for IP-based approaches[C] // Proceedings of the 5th IEEE International Workshop on Factory Communication Systems. Piscataway: IEEE, 2004: 201-209.
  • 3SALVATORE C, GIOVANNI C. Implementing encryption and authentication in KNX using Diffie-Hellman and AES algorithms[C] // Proceedings of the 35th IEEE Annual Conference on Industrial Electronics. New York: IEEE, 2009: 2459-2464.
  • 4KNX Association. The overview over the KNXnet/IP specifications[S] , 2009.
  • 5GRANZER W,LECHNER D,PRAUS F,et al. Securing IP backbones in building automation networks[C] // Proceedings of the 7th IEEE International Conference on Industrial Informatics. New York: IEEE, 2009: 410-415.
  • 6GRANZER W, REINISCH C, KASTNER W. Key set management in networked building automation systems using multiple key servers[C] // Proceedings of the 7th IEEE International Workshop on Factory Communication Systems. New York: IEEE, 2008: 205-214.
  • 7KENT S, SEO K. RFC 4301, Security Architecture for the Internet Protocol [S] , 2005.
  • 8HARKINS D, CARREL D. RFC 2409, The Internet Key Exchange (IKE) [S] , 1998.
  • 9DIERKS T, RESCORLA E. RFC 5246, The Transport Layer Security (TLS) protocol version 1.2 [S] , 2008.
  • 10HANKERSON D, VANSTONE S, MENEZES A. Guide to elliptic curve cryptography [ M]. Berlin: Springer, 2004.

同被引文献9

引证文献2

二级引证文献6

计算机应用
2011年 第7期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部