IEEE802.15.4e 标准的安全多跳时间同步协议设计

IEEE802.15.4e是工业物联网中最新的MAC层标准,其采用时间同步技术实现高可靠、低功耗的无线网络。由于时间同步机制是工业无线网络中的核心支撑技术,因此其往往成为攻击者的首选攻击目标。针对IEEE802.15.4e标准的多跳时间同步协议存在安全性不足的问题,提出了一个多跳时间同步安全策略 SMTSF。SMTSF 安全策略主要采用基于异常的入侵检测算法、基于信任模型的多路径时间同步方法和加密与认证等关键技术,有效保障了节点之间安全地进行多跳时间同步。在基于入侵检测的算法中,边界路由器对节点的 Rank 值进行规则验证,可以有效检测出时间同步树攻击；同时设计了轻量级防火墙来抵御来自互联网的恶意主机攻击。在基于信任模型的多路径时间同步方法中,通过建立节点之间的信任模型来保障网络中节点可以找到一条安全多跳同步路径。仿真结果表明,SMTSF 能有效检测时间同步树攻击并抵御捕获攻击。

Design of Secure Multi-hop Time Synchronization Protocol for IEEE802.15.4e

IEEE802.15.4e is the latest MAC layer standards for the industrial Internet of things,which enables highly reliable and ultra-low power wireless networking through time synchronization technique.Because time synchronization is a core fundamental technology for industrial wireless network,it often becomes an attractive target for attac-kers.This paper proposed a secure multi-hop time synchronization mechanism called SMTSF for IEEE802.15.4e.SMTSF mainly adopt anomaly-based intrusion detection algorithm,multi-path approach based on trust modeling,encryption and authentication technologies to secure multi-hop time synchronization.In the process of anomaly-based intrusion detection algorithm,the border router nodes verify the rank value of other nodes in the network which can effectively detect time synchronization tree attack.A mini-firewall based on packet filtering can stop intrusion attempts from the Internet.The multi-path approach based on trust modeling can find a secure path to the root node by establishing trust model between nodes.Simulation experiments show that SMTSF can detect time synchronization tree attack and defend against compromise attack.