摘要
针对传统网络拓扑发现算法没有对数据来源的真实性进行验证,造成网络拓扑发现结果有被欺骗的可能性,在物联网环境下,提出了一种新的可抵抗路由欺骗攻击的网络拓扑发现算法。对物联网无向图进行描述,利用PSNP请求对可疑路由信息的源路由器进行查询,实现真实性检测,抵抗路由欺骗攻击。采用SNMP管理信息库MIB内的信息对路由器与交换机进行区分,为网络层拓扑发现提供依据。给出SNMP协议网络层拓扑发现算法流程。结合网桥转发表和网桥生成树算法实现链路层拓扑发现,介绍了链路层拓扑发现流程。实验结果表明,本文算法能够有效抵抗路由欺骗,网络拓扑发现性能强。
The traditional Network Topology Discovery(NTD)algorithm does not verify the authenticity of data sources,resulting in the possibility of the discovery results being deceived.Therefore,in the internet of things environment,a new NTD algorithm is proposed,which can resist routing spoofing attack.The undirected graph of the internet of things is described,and the PSNP request is used to query the source router of the suspicious routing information,so as to realize the authenticity detection and resist routing proofing attack.The information in SNMP management information base MIB is used to distinguish routers and switches,which provides the basis for network layer topology discovery.The algorithm flow of network layer topology discovery in SNMP protocol is given.The link layer topology discovery process is introduced by combing bridge switching and bridge spanning tree algorithm to realize link layer topology discovery.Experimental results showthat the proposed algorithm can effectively resist routing proofing attack and has strong network topology discovery performance.
作者
傅文博
张杰
陈永乐
FU Wen-bo;ZHANG Jie;CHEN Yong-le(School of Mathematics and Computer Science,Shanxi Datong University,Datong 037009,China;,College of Computer Science and Technology,Taiyuan University of Technology,Taiyuan 030024,China)
出处
《吉林大学学报(工学版)》
EI
CAS
CSCD
北大核心
2018年第4期1231-1236,共6页
Journal of Jilin University:Engineering and Technology Edition
基金
国家自然基金青年科学基金项目(61401300)
山西省高等学校大学生创新创业训练项目(2014340)
山西大同大学科研项目(2010K1)
关键词
计算机应用
物联网环境
路由欺骗
攻击
网络拓扑发现
computer application
Internet of things environment
routing spoofing
attack
network topology discovery
