摘要
针对传统物理访问控制系统的认证方法易受攻击的安全问题,基于拟态防御技术及其动态异构冗余架构(DHR)原理,以移动端二维码为接口、以动态口令为内核设计了一种拟态防御认证方法。首先,构建认证服务器的执行体池;然后,利用由输入分发代理、选调器和表决器等功能模块组成的中心控制器,实现从执行体池中动态调度异构冗余执行体;最后,表决器对异构冗余执行体输出进行多模裁决决定认证结果。实验结果表明,对比传统物理访问控制系统的认证方法,所提认证方法具有更高的安全性和可靠性。此外,所提认证方法能与其他认证方法组合使用。
To address the security problem of the vulnerability of the authentication methods of traditional physical access control systems,a mimic defense authentication method was designed based on the principle of mimic defense technique and its dynamic heterogeneous redundant architecture(DHR),using mobile 2D code as the interface and dynamic password as the core.First,the actuator pool of the authentication server was constructed.Then,a central controller consisting of functional modules such as input distribution agent,selector and voter was used to dynamically schedule heterogeneous redundant actuators from the actuator pool.Finally,a multimode ruling on the heterogeneous redundant actuator output to determine the authentication result was made by the voter.The experimental results show that the proposed authentication method has higher security and reliability compared to the traditional physical access control system authentication method,and at the same time,it can be used in combination with other authentication methods.
作者
周清雷
班绍桓
韩英杰
冯峰
ZHOU Qinglei;BAN Shaohuan;HAN Yingjie;FENG Feng(School of Information Engineering,Zhengzhou University,Zhengzhou 450001,China)
出处
《通信学报》
EI
CSCD
北大核心
2020年第6期80-87,共8页
Journal on Communications
基金
国家重点研发计划基金资助项目(No.2016YFB0800100)
“公共安全风险防控与应急技术装备”重点专项基金资助项目。
关键词
访问控制
QR码
异构冗余
拟态防御
access control
QR code
heterogeneous redundancy
mimic defense
