摘要
从物联网信息安全和终端设备的真实可靠性角度出发,但不同于PKI/CA框架的认证系统,提出了使用组合密钥技术和对称加密算法构建身份认证系统的方案。系统使用组合技术动态产生密钥,采用对称算法和芯片内加密数据,安全性高,并具有资源占用少、认证速度快、密钥管理简单、可规模化管理的优点。针对物联网终端设备数量庞大,要求响应和处理及时的特点,提出使用集群和负载均衡技术构建服务器系统的方案,实现了整个系统的高性能、高可用、易扩充,以及易于维护和管理。
From the view of Internet of Things (IoT) information security and terminal equipment reliability, a new system based on combined key technology and symmetric enerypt algorithm, different from the authentication system based on PKI/CA architecture, was proposed. The system used combined technology to generate key dynamically, and used symmetric algorithm to encrypt data in chip, all of these ensure much higher security; the use of hardware resources is less, the speed of authentication is faster, the method of key management is simple, and a large-seale management can be adopted too. Considering that a huge number of terminal equipment at present IoT environment and the timely response and handle are required, this paper proposed a scheme using cluster and load balancing technology to build the server system, and making it to achieve more high-performance, high-availability, easy to expanse, easy to maintain and manage.
出处
《计算机应用》
CSCD
北大核心
2013年第A01期126-129,共4页
journal of Computer Applications
基金
北京市科学技术情报研究所网络规模化认证服务中心建设项目(PXM2012_178214_000005)
关键词
物联网
组合对称密钥
认证系统
规模化
集群
负载均衡
Internet of Things(IoT)
combined symmetric key
authentication system
scale
cluster
load balancing
