摘要
随着物联网中分布式设备数量的爆发式增长,设备之间的协作和优化算法的安全问题成为物联网系统研究的前沿问题。物联网中的分布式算法依赖于单个智能体的本地计算和近邻间通信来迭代地解决一类广泛的、受约束的优化问题,但是容易遭受来自内部恶意节点的数据注入攻击。针对现有的检测方法大部分为本地运行,并且存在数据封闭、单点故障、检测过程不透明等问题,考虑使用区块链技术和智能合约对网络中存在的恶意节点进行检测。所提方法基于区块链技术的去中心化和多地备份特性实现了数据共享,避免了单点故障问题。另外,利用智能合约的合约代码、执行过程及结果公开透明且合约代码与结果不可篡改等特性保证检测过程可追溯和可验证。最后,采用平均共识算法并基于树莓派平台对所提方法进行验证分析。
With the explosive growth of the number of distributed devices in the Internet of things(IoT)network,the security of decentralized multi-agent optimization algorithm has become the forefront problem.The distributed algorithms in the IoT network are vulnerable to data injection attacks from internal malicious node because each agent locally estimates its state without any supervision.In general,the detection methods for malicious node run independently in each agent,inducing issues such as closed data,single points of failure,opaque detection processes,and so on.The proposed strategy considered detecting via an aid of blockchain technology and smart contracts in Ethereum to detect malicious node in the network.Based on the decentralized and multiple backup features of blockchain technology,the multi-site backup features of the blockchain technology enabled data sharing and avoided single point failure.In addition,the contract code,execution process and result of the smart contract were open and transparent,and the contract code and result could not be tampered to ensure that the detection process could be traced and verified.Finally,the average consensus algorithm was adopted as an example,and the proposed strategy was verified on a simplified IoT network implemented by Raspberry Pi.
作者
黄豪杰
吴晓晓
李刚强
HUANG Haojie;WU Xiaoxiao;LI Gangqiang(College of Electronics and Information Engineering,Shenzhen University,Shenzhen 518060,China;Peng Cheng Laboratory,Shenzhen 518055,China)
出处
《物联网学报》
2020年第2期58-69,共12页
Chinese Journal on Internet of Things
基金
国家自然科学基金资助项目(No.61701315)
深圳市科技研发基金基础研究项目(No.JCYJ20170817101149906)
关键词
物联网
数据注入攻击
区块链
智能合约
恶意节点
Internet of things(IoT)
data injection attack
blockchain
smart contract
malicious node