發(fā)布時間：2018-06-18 10:51

  本文選題：智能家居 + 安防系統(tǒng)��； 參考：《杭州電子科技大學(xué)》2014年碩士論文

【摘要】：對于智能家居安防系統(tǒng)，最重要的就是如何保證所接收的數(shù)據(jù)包確實是對方發(fā)送的，一旦數(shù)據(jù)包被非法篡改或冒充將造成不可估量的后果。雖然目前PKI技術(shù)成熟，已經(jīng)廣泛應(yīng)用于各個安全領(lǐng)域，然而隨著網(wǎng)絡(luò)容量的急劇膨脹，特別是IPv6海量網(wǎng)絡(luò)時代的到臨，基于在線密鑰庫的分布式密碼密鑰管理方法在存儲能力、查找速度等上已經(jīng)難以滿足需要。為了更好地迎接海量網(wǎng)絡(luò)新時代，，尋找一種新的安全體系勢在必行。本文在組合公鑰體制上，結(jié)合智能家居安防網(wǎng)路系統(tǒng)的應(yīng)用特點，建立了一種新的應(yīng)用于ZigBee智能家居系統(tǒng)的數(shù)據(jù)安全體系，給出了一種可行的本地認證方案。 文章首先回顧了智能家居安防系統(tǒng)及信息安全技術(shù)的發(fā)展，分析了研究現(xiàn)狀，舉例說明現(xiàn)階段的主要解決方案，并指出其優(yōu)點和不足。在此基礎(chǔ)上介紹了基于ZigBee技術(shù)的智能家居安防系統(tǒng)的優(yōu)勢，以及組合公鑰體制在信息安全上的益處，并提出了一種適合家居安防系統(tǒng)的安全方案。此后對群、域、橢圓曲線等基礎(chǔ)知識及運算作了介紹。文中采用了基于ECDLP安全算法，并通過FPGA得以實現(xiàn)；根據(jù)約減多項式項式少的特點，采用了滑動窗口的方法，此方法可以在很少硬件消耗情況下在一個時鐘周期內(nèi)完成模運算；在乘法運算設(shè)計上，采用混合結(jié)構(gòu)，兼顧了時間和空間資源；在逆運算中，采用循環(huán)迭代方法，減少了耗時大的乘法運算次數(shù)，加速了逆運算速度；在點乘運算中，引入LD坐標系并采用了Montgomery方法，有效地避免了仿射坐標系需要大量逆運算的情況，不但更加地節(jié)約存儲空間和計算時間，而且提高了抵抗能量、時間分析的攻擊。在上述基礎(chǔ)上，給出了一個可行的基于ECDSA的認證方案。 本方案通過對種子矩陣進行優(yōu)化，有效地避免密鑰碰撞實現(xiàn)了不依靠第三方數(shù)據(jù)庫的本地認證，以芯片級別的存儲能力來支持海量節(jié)點的安全工作，大大地降低了對存儲容量、通信帶寬等要求，很適合智能家居安防系統(tǒng)的安全需要。 最后，在以上研究成果基礎(chǔ)上，本系統(tǒng)搭建了一個安全認證的ZigBee網(wǎng)絡(luò)，初步實現(xiàn)了對網(wǎng)絡(luò)通信消息的簽名認證功能。通過分別模擬幾個場景，來對方案的工作能力、抗重發(fā)、抗篡改幾方面進行了實驗驗證。實驗結(jié)果表明，本設(shè)計可以滿足當前應(yīng)用系統(tǒng)的要求。
[Abstract]:For the smart home security system, the most important thing is how to ensure that the received data packet is really sent by the other side, once the packet is illegally tampered with or impersonated will cause incalculable consequences. Although PKI technology is mature, it has been widely used in various security fields. However, with the rapid expansion of network capacity, especially the approaching of IPv6 mass network era, the distributed cryptographic key management method based on online KeyStore is in the storage capacity. Search speed and so on has been difficult to meet the needs. In order to better meet the new era of mass network, it is imperative to find a new security system. In this paper, a new data security system applied to ZigBee smart home system is established, and a feasible local authentication scheme is presented, based on the combination public key system and the application characteristics of smart home security network system. This paper first reviews the development of smart home security system and information security technology, analyzes the present research situation, illustrates the main solutions at this stage, and points out its advantages and disadvantages. On this basis, the advantages of intelligent home security system based on ZigBee technology and the advantages of combined public key system in information security are introduced, and a security scheme suitable for home security system is proposed. Then the basic knowledge and operation of group, domain and elliptic curve are introduced. The security algorithm based on ECDLP is adopted in this paper, which is implemented by FPGA, and the sliding window method is adopted according to the characteristics of reduced polynomial, which can complete the modular operation in a clock cycle with little hardware consumption. In the design of multiplication operation, a hybrid structure is adopted, which takes into account both time and space resources. In inverse operation, cyclic iteration method is used to reduce the number of times of multiplication and accelerate the speed of inverse operation. The LD coordinate system and the Montgomery method are introduced, which can effectively avoid the need of a large number of inverse operations in the affine coordinate system, which not only saves the storage space and computation time, but also increases the attack of energy and time analysis. Based on the above, a feasible authentication scheme based on ECDSA is presented. By optimizing the seed matrix, the scheme effectively avoids the key collision and realizes the local authentication without relying on the third party database. The security work of the massive nodes is supported by the storage capability at the chip level, and the storage capacity is greatly reduced. Communication bandwidth and other requirements, very suitable for smart home security system security needs. Finally, based on the above research results, a secure authentication ZigBee network is built, and the signature authentication function of the network communication message is preliminarily realized. Several scenarios were simulated to verify the performance, anti-retransmission and anti-tampering of the scheme. Experimental results show that the design can meet the requirements of the current application system.
【學(xué)位授予單位】：杭州電子科技大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2014
【分類號】：TU855;TN92

【參考文獻】

相關(guān)期刊論文 前10條

1 韓然;吳正朋;胡小莉;;一種基于橢圓曲線的數(shù)字簽名與盲簽名方案[J];中國傳媒大學(xué)學(xué)報(自然科學(xué)版);2012年02期

2 曹陽;郝玉潔;洪歧;;一種基于ECDLP有身份認證的ECDH密鑰協(xié)商方案[J];重慶郵電大學(xué)學(xué)報(自然科學(xué)版);2012年01期

3 顧理軍;;ZigBee技術(shù)在智能家居網(wǎng)絡(luò)中的應(yīng)用研究[J];重慶電子工程職業(yè)學(xué)院學(xué)報;2011年03期

4 束禮寶,宋克柱,王硯方;偽隨機數(shù)發(fā)生器的FPGA實現(xiàn)與研究[J];電路與系統(tǒng)學(xué)報;2003年03期

5 李紅梅;周會強;;WiFi技術(shù)在智能家居中的應(yīng)用研究[J];硅谷;2012年02期

6 戴祥南;袁縱橫;江志強;;基于ZigBee技術(shù)的智能家居系統(tǒng)[J];桂林電子科技大學(xué)學(xué)報;2012年03期

7 李小龍;彭美平;;Zigbee傳感器網(wǎng)絡(luò)協(xié)議棧的研究與分析[J];電腦知識與技術(shù);2013年18期

8 羅伯特·海利;黃家瑞;郭楠;;ZigBee技術(shù)及其在物聯(lián)網(wǎng)中的應(yīng)用[J];信息技術(shù)與標準化;2013年04期

9 陳麗敏;王鴻飛;;淺談檔案信息化的發(fā)展[J];廣東科技;2011年24期

10 榮昆;李益發(fā);;CPK種子矩陣的優(yōu)化設(shè)計方案[J];計算機工程與應(yīng)用;2006年24期

本文編號：2035230