本文選題：面向域間路由系統(tǒng)的信任模型 + 自治域路由行為預(yù)測(cè)��； 參考：《東南大學(xué)》2016年博士論文

【摘要】：可信可控網(wǎng)絡(luò)旨在實(shí)現(xiàn)網(wǎng)絡(luò)中系統(tǒng)行為的可監(jiān)測(cè)、可評(píng)估、可預(yù)期,并在此基礎(chǔ)上通過(guò)構(gòu)建統(tǒng)一的控制層面來(lái)實(shí)現(xiàn)網(wǎng)絡(luò)的可信可控。作為互聯(lián)網(wǎng)運(yùn)行的基石,域間路由系統(tǒng)肩負(fù)著維護(hù)網(wǎng)絡(luò)可達(dá)的責(zé)任,在可信可控網(wǎng)絡(luò)研究中具有極其重要的地位。在該系統(tǒng)中,自治域間通過(guò)邊界網(wǎng)關(guān)協(xié)議交換路由通告以實(shí)現(xiàn)域問(wèn)路由收斂,然而該協(xié)議的運(yùn)行基于對(duì)自治域所發(fā)布路由通告的可信假設(shè),使得域問(wèn)路由系統(tǒng)易遭受虛假路由通告的干擾,導(dǎo)致網(wǎng)絡(luò)中斷事件頻發(fā)。因此,如何有效抑制虛假路由信息的產(chǎn)生和傳播是當(dāng)前面向域間路由系統(tǒng)的研究所亟待解決的問(wèn)題。由于域問(wèn)路由協(xié)議的安全性解決以及路由信息診斷方法難以有效的抑制虛假路由信息的產(chǎn)生和傳播,目前信任機(jī)制已逐漸被用于對(duì)自治域路由行為進(jìn)行可信評(píng)估,評(píng)估結(jié)果可以作為路由決策規(guī)避路由風(fēng)險(xiǎn)的有效依據(jù)。然而,現(xiàn)有的面向域間路由系統(tǒng)的信任機(jī)制仍然存在一些問(wèn)題,導(dǎo)致評(píng)估結(jié)果不能準(zhǔn)確反映自治域的路由行為,影響了評(píng)估結(jié)果作為路由決策依據(jù)的有效性,主要問(wèn)題如下：(1)現(xiàn)有研究沒(méi)有基于對(duì)自治域路由行為的預(yù)測(cè)來(lái)進(jìn)行信任評(píng)估,導(dǎo)致評(píng)估結(jié)果不能準(zhǔn)確反映自治域的路由行為；(2)現(xiàn)有研究缺乏激勵(lì)自治域積極參與信任推薦的機(jī)制,不能保障評(píng)估自治域可獲取足夠的信任信息來(lái)實(shí)現(xiàn)準(zhǔn)確評(píng)估；(3)現(xiàn)有研究未采取有效的限制不可靠信任信息對(duì)信任評(píng)估影響的方法。本文為實(shí)現(xiàn)對(duì)自治域路由行為的準(zhǔn)確信任評(píng)估,分別從構(gòu)建面向域問(wèn)路由系統(tǒng)的信任模型、對(duì)自治域路由行為進(jìn)行預(yù)測(cè)以及促進(jìn)自治域積極參與信任推薦這三個(gè)方面展開(kāi)理論研究。首先,提出一種面向域間路由系統(tǒng)的信任模型,通過(guò)基于對(duì)自治域路由行為進(jìn)行預(yù)測(cè)的信任評(píng)估方法、綜合多方信任信息、信任推薦激勵(lì)機(jī)制、有效限制不可靠信任信息對(duì)信任評(píng)估的影響來(lái)實(shí)現(xiàn)對(duì)自治域路由行為的準(zhǔn)確評(píng)估,其次,為實(shí)現(xiàn)對(duì)自治域路由行為的準(zhǔn)確預(yù)測(cè),還提出了一種自治域路由行為預(yù)測(cè)算法。最后,提出一種自治域信任推薦激勵(lì)機(jī)制,可有效促進(jìn)自治域相互積極分享信任信息,以保障信任評(píng)估結(jié)果的全面性和準(zhǔn)確性�；谏鲜隼碚撗芯抗ぷ�,在東南大學(xué)可信可控網(wǎng)絡(luò)實(shí)驗(yàn)平臺(tái)上設(shè)計(jì)并實(shí)現(xiàn)面向域問(wèn)路由控制的信任機(jī)制模塊,對(duì)模塊功能進(jìn)行全面測(cè)試,驗(yàn)證本文理論工作的有效性和可行性。本文對(duì)面向域問(wèn)路由控制的信任機(jī)制進(jìn)行了深入研究,為有效抑制虛假路由信息的產(chǎn)生與傳播,提出了可對(duì)自治域路由行為進(jìn)行準(zhǔn)確信任評(píng)估的方案,評(píng)估結(jié)果可為域間路由決策規(guī)避路由風(fēng)險(xiǎn)提供有效支持,因此,本文工作可為保障域問(wèn)路由系統(tǒng)的穩(wěn)定運(yùn)行以及為互聯(lián)網(wǎng)的安全運(yùn)作做出貢獻(xiàn)。
[Abstract]:Trusted controllable network is designed to monitor, evaluate and predict the system behavior in the network. On the basis of this, the trusted and controllable network can be realized by constructing a unified control layer. As the cornerstone of Internet operation, inter-domain routing systems shoulder the responsibility of maintaining network accessibility, and play an extremely important role in the research of trusted and controllable networks. In this system, routing notices are exchanged between autonomous domains through a boundary gateway protocol to realize domain routing convergence. However, the operation of the protocol is based on the trusted assumption of routing notices issued by autonomous domains. The system is vulnerable to the interference of false routing notices, which leads to frequent network interruptions. Therefore, how to effectively suppress the generation and propagation of false routing information is an urgent problem to be solved in the research of inter-domain routing systems. Because the security solution of domain routing protocol and the method of routing information diagnosis are difficult to effectively suppress the generation and propagation of false routing information, trust mechanisms have been gradually used to evaluate the routing behavior of autonomous domains. The evaluation results can be used as an effective basis for routing decisions to avoid routing risks. However, there are still some problems in the existing trust mechanisms for inter-domain routing systems, which result in the evaluation results can not accurately reflect the routing behavior of autonomous domains, and affect the effectiveness of the evaluation results as the basis for routing decisions. The main problem is as follows: 1) there is no trust assessment based on the prediction of routing behavior in autonomous domains. As a result, the evaluation results can not accurately reflect the routing behavior of autonomous domains. (2) the existing research lacks a mechanism to encourage autonomous domains to actively participate in trust recommendation. There is no guarantee that evaluation autonomous domains can obtain enough trust information to realize accurate evaluation. Existing research has not adopted effective methods to limit the impact of unreliable trust information on trust assessment. In order to realize the accurate trust evaluation of autonomous domain routing behavior, the trust model of domain-oriented routing system is constructed in this paper. This paper makes theoretical research on the prediction of autonomous domain routing behavior and the promotion of autonomous domain active participation in trust recommendation. First of all, a trust model for inter-domain routing system is proposed, which integrates multi-party trust information and trust recommendation incentive mechanism through a trust evaluation method based on prediction of autonomous domain routing behavior. The influence of unreliable trust information on trust evaluation is effectively restricted to realize accurate evaluation of autonomous domain routing behavior. Secondly, an autonomous domain routing behavior prediction algorithm is proposed to accurately predict autonomous domain routing behavior. Finally, an autonomous trust recommendation incentive mechanism is proposed, which can effectively promote the autonomous domains to actively share trust information with each other, so as to ensure the integrity and accuracy of the results of trust evaluation. Based on the above theoretical research work, a trust mechanism module based on the trusted controllable network of Southeast University is designed and implemented, and the function of the module is tested comprehensively, which verifies the validity and feasibility of the theoretical work in this paper. In this paper, the trust mechanism of domain-oriented routing control is deeply studied. In order to effectively suppress the generation and propagation of false routing information, an accurate trust evaluation scheme for autonomous domain routing behavior is proposed. The evaluation results can provide an effective support for inter-domain routing decisions to avoid routing risks. Therefore, this paper can contribute to the stable operation of the system and the safe operation of the Internet.
【學(xué)位授予單位】：東南大學(xué)
【學(xué)位級(jí)別】：博士
【學(xué)位授予年份】：2016
【分類號(hào)】：TP393.08

【相似文獻(xiàn)】

相關(guān)期刊論文 前10條

1 盧錫城;趙金晶;朱培棟;董攀;;域間路由系統(tǒng)自組織特性[J];軟件學(xué)報(bào);2006年09期

2 李自強(qiáng),周明天;域間路由連通不完全性分析[J];計(jì)算機(jī)工程與應(yīng)用;2005年27期

3 劉迎國(guó),念其鋒,朱培棟;域間路由系統(tǒng)的安全威脅及其對(duì)策[J];微機(jī)發(fā)展;2005年11期

4 王e鴈，

本文編號(hào)：1937188