文章摘要
郭江* **,王淼*,许志伟*,张瀚文*,张玉军* **.基于区块链的命名数据网络内容毒化攻击抵御机制[J].高技术通讯(中文),2020,30(11):1104~1112
基于区块链的命名数据网络内容毒化攻击抵御机制
  
DOI:10.3772/j.issn.1002-0470.2020.11.002
中文关键词: 命名数据网络(NDN); 内容毒化攻击(CPA); 摘要验证; 区块链; 分布式数据库
英文关键词: named data networking(NDN), content poisoning attack (CPA), public-key digest, blockchain, distributed database
基金项目:
作者单位
郭江* **  
王淼*  
许志伟*  
张瀚文*  
张玉军* **  
摘要点击次数: 2346
全文下载次数: 1562
中文摘要:
      本文提出了一种基于区块链内容毒化攻击抵御机制(BlockIKB)。该机制在边缘路由器上引入区块链数据库,存储内容名字和发布者公钥摘要的绑定信息,在内容获取过程中,用户可以就近从边缘路由器获取发布者的公钥摘要,路由器根据公钥摘要验证内容,从而抵御毒化内容。与已有机制相比,本文机制能够抵御内容毒化攻击。构建了分布式数据库,避免了用户集中获取公钥摘要导致的拥塞问题;提供了就近公钥摘要获取服务,提升了内容获取效率。安全分析证明该机制能够抵御内容毒化攻击,实验结果表明,该机制能够减轻服务器负载,提升内容获取效率。
英文摘要:
      This paper proposes a blockchain-based content poisoning attacks defense mechanism (BlockIKB). Blockchain database is introduced into the edge routers which collect binding information including the content name and producer’s public-key digest. In content retrieval process, consumers pre-acquire producer’s public-key digest from their nearby edge routers. Then, according to this public-key digest, in-network routers validate incoming content to defense fake content. Compared with the existing solutions, the proposed solution can defense content poisoning attacks. Constructing a distributed database, it avoids congestion problem caused by consumers centralized acquisition. In addition, it improves the consumer’s efficiency in retrieving content by providing a nearby acquisition service of public-key digests. Security analysis shows that the proposed solution can defense content poisoning attacks. The experimental results confirm that this solution can mitigate server load and improve the consumer’s efficiency in retrieving content.
查看全文   查看/发表评论  下载PDF阅读器
关闭

分享按钮