本文選題：智能家居 + 安防系統(tǒng)　； 參考：《杭州電子科技大學(xué)》2014年碩士論文

【摘要】：對(duì)于智能家居安防系統(tǒng)，最重要的就是如何保證所接收的數(shù)據(jù)包確實(shí)是對(duì)方發(fā)送的，一旦數(shù)據(jù)包被非法篡改或冒充將造成不可估量的后果。雖然目前PKI技術(shù)成熟，已經(jīng)廣泛應(yīng)用于各個(gè)安全領(lǐng)域，然而隨著網(wǎng)絡(luò)容量的急劇膨脹，特別是IPv6海量網(wǎng)絡(luò)時(shí)代的到臨，基于在線密鑰庫(kù)的分布式密碼密鑰管理方法在存儲(chǔ)能力、查找速度等上已經(jīng)難以滿足需要。為了更好地迎接海量網(wǎng)絡(luò)新時(shí)代，，尋找一種新的安全體系勢(shì)在必行。本文在組合公鑰體制上，結(jié)合智能家居安防網(wǎng)路系統(tǒng)的應(yīng)用特點(diǎn)，建立了一種新的應(yīng)用于ZigBee智能家居系統(tǒng)的數(shù)據(jù)安全體系，給出了一種可行的本地認(rèn)證方案。 文章首先回顧了智能家居安防系統(tǒng)及信息安全技術(shù)的發(fā)展，分析了研究現(xiàn)狀，舉例說(shuō)明現(xiàn)階段的主要解決方案，并指出其優(yōu)點(diǎn)和不足。在此基礎(chǔ)上介紹了基于ZigBee技術(shù)的智能家居安防系統(tǒng)的優(yōu)勢(shì)，以及組合公鑰體制在信息安全上的益處，并提出了一種適合家居安防系統(tǒng)的安全方案。此后對(duì)群、域、橢圓曲線等基礎(chǔ)知識(shí)及運(yùn)算作了介紹。文中采用了基于ECDLP安全算法，并通過(guò)FPGA得以實(shí)現(xiàn)；根據(jù)約減多項(xiàng)式項(xiàng)式少的特點(diǎn)，采用了滑動(dòng)窗口的方法，此方法可以在很少硬件消耗情況下在一個(gè)時(shí)鐘周期內(nèi)完成模運(yùn)算；在乘法運(yùn)算設(shè)計(jì)上，采用混合結(jié)構(gòu)，兼顧了時(shí)間和空間資源；在逆運(yùn)算中，采用循環(huán)迭代方法，減少了耗時(shí)大的乘法運(yùn)算次數(shù)，加速了逆運(yùn)算速度；在點(diǎn)乘運(yùn)算中，引入LD坐標(biāo)系并采用了Montgomery方法，有效地避免了仿射坐標(biāo)系需要大量逆運(yùn)算的情況，不但更加地節(jié)約存儲(chǔ)空間和計(jì)算時(shí)間，而且提高了抵抗能量、時(shí)間分析的攻擊。在上述基礎(chǔ)上，給出了一個(gè)可行的基于ECDSA的認(rèn)證方案。 本方案通過(guò)對(duì)種子矩陣進(jìn)行優(yōu)化，有效地避免密鑰碰撞實(shí)現(xiàn)了不依靠第三方數(shù)據(jù)庫(kù)的本地認(rèn)證，以芯片級(jí)別的存儲(chǔ)能力來(lái)支持海量節(jié)點(diǎn)的安全工作，大大地降低了對(duì)存儲(chǔ)容量、通信帶寬等要求，很適合智能家居安防系統(tǒng)的安全需要。 最后，在以上研究成果基礎(chǔ)上，本系統(tǒng)搭建了一個(gè)安全認(rèn)證的ZigBee網(wǎng)絡(luò)，初步實(shí)現(xiàn)了對(duì)網(wǎng)絡(luò)通信消息的簽名認(rèn)證功能。通過(guò)分別模擬幾個(gè)場(chǎng)景，來(lái)對(duì)方案的工作能力、抗重發(fā)、抗篡改幾方面進(jìn)行了實(shí)驗(yàn)驗(yàn)證。實(shí)驗(yàn)結(jié)果表明，本設(shè)計(jì)可以滿足當(dāng)前應(yīng)用系統(tǒng)的要求。
[Abstract]:For the smart home security system, the most important thing is how to ensure that the received data packet is really sent by the other side, once the packet is illegally tampered with or impersonated will cause incalculable consequences. Although PKI technology is mature, it has been widely used in various security fields. However, with the rapid expansion of network capacity, especially the approaching of IPv6 mass network era, the distributed cryptographic key management method based on online KeyStore is in the storage capacity. Search speed and so on has been difficult to meet the needs. In order to better meet the new era of mass network, it is imperative to find a new security system. In this paper, a new data security system applied to ZigBee smart home system is established, and a feasible local authentication scheme is presented, based on the combination public key system and the application characteristics of smart home security network system. This paper first reviews the development of smart home security system and information security technology, analyzes the present research situation, illustrates the main solutions at this stage, and points out its advantages and disadvantages. On this basis, the advantages of intelligent home security system based on ZigBee technology and the advantages of combined public key system in information security are introduced, and a security scheme suitable for home security system is proposed. Then the basic knowledge and operation of group, domain and elliptic curve are introduced. The security algorithm based on ECDLP is adopted in this paper, which is implemented by FPGA, and the sliding window method is adopted according to the characteristics of reduced polynomial, which can complete the modular operation in a clock cycle with little hardware consumption. In the design of multiplication operation, a hybrid structure is adopted, which takes into account both time and space resources. In inverse operation, cyclic iteration method is used to reduce the number of times of multiplication and accelerate the speed of inverse operation. The LD coordinate system and the Montgomery method are introduced, which can effectively avoid the need of a large number of inverse operations in the affine coordinate system, which not only saves the storage space and computation time, but also increases the attack of energy and time analysis. Based on the above, a feasible authentication scheme based on ECDSA is presented. By optimizing the seed matrix, the scheme effectively avoids the key collision and realizes the local authentication without relying on the third party database. The security work of the massive nodes is supported by the storage capability at the chip level, and the storage capacity is greatly reduced. Communication bandwidth and other requirements, very suitable for smart home security system security needs. Finally, based on the above research results, a secure authentication ZigBee network is built, and the signature authentication function of the network communication message is preliminarily realized. Several scenarios were simulated to verify the performance, anti-retransmission and anti-tampering of the scheme. Experimental results show that the design can meet the requirements of the current application system.
【學(xué)位授予單位】：杭州電子科技大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2014
【分類號(hào)】：TU855;TN92

【參考文獻(xiàn)】

相關(guān)期刊論文 前10條

1 韓然;吳正朋;胡小莉;;一種基于橢圓曲線的數(shù)字簽名與盲簽名方案[J];中國(guó)傳媒大學(xué)學(xué)報(bào)(自然科學(xué)版);2012年02期

2 曹陽(yáng);郝玉潔;洪歧;;一種基于ECDLP有身份認(rèn)證的ECDH密鑰協(xié)商方案[J];重慶郵電大學(xué)學(xué)報(bào)(自然科學(xué)版);2012年01期

3 顧理軍;;ZigBee技術(shù)在智能家居網(wǎng)絡(luò)中的應(yīng)用研究[J];重慶電子工程職業(yè)學(xué)院學(xué)報(bào);2011年03期

4 束禮寶,宋克柱,王硯方;偽隨機(jī)數(shù)發(fā)生器的FPGA實(shí)現(xiàn)與研究[J];電路與系統(tǒng)學(xué)報(bào);2003年03期

5 李紅梅;周會(huì)強(qiáng);;WiFi技術(shù)在智能家居中的應(yīng)用研究[J];硅谷;2012年02期

6 戴祥南;袁縱橫;江志強(qiáng);;基于ZigBee技術(shù)的智能家居系統(tǒng)[J];桂林電子科技大學(xué)學(xué)報(bào);2012年03期

7 李小龍;彭美平;;Zigbee傳感器網(wǎng)絡(luò)協(xié)議棧的研究與分析[J];電腦知識(shí)與技術(shù);2013年18期

8 羅伯特·海利;黃家瑞;郭楠;;ZigBee技術(shù)及其在物聯(lián)網(wǎng)中的應(yīng)用[J];信息技術(shù)與標(biāo)準(zhǔn)化;2013年04期

9 陳麗敏;王鴻飛;;淺談檔案信息化的發(fā)展[J];廣東科技;2011年24期

10 榮昆;李益發(fā);;CPK種子矩陣的優(yōu)化設(shè)計(jì)方案[J];計(jì)算機(jī)工程與應(yīng)用;2006年24期

本文編號(hào)：2035230