摘要
传统安全总线的安全机制一般采用固定存储密钥和国际密码算法,这种方式存在不可控因素和密钥被侵入攻击的安全风险,针对传统总线传输存在的风险问题,提出一种基于国密算法和物理不克隆函数的安全并行总线,该总线设计了一种环形振荡器物理不克隆函数和密钥生成机制,将物理不克隆函数结合随机数发生器由SM3密码算法生成密钥,采用国密SM4密码算法对总线上传输的数据进行加密,加密时为了安全因素采用随机数对明文进行填充,保证了总线数据传输的安全性。通过该安全机制实现的总线,能有效抵御侵入式分析,抵抗重放攻击,解决密钥易被破解问题,保证数据安全性和机密性。最后搭建了并行总线加密仿真平台,验证了该方案的可行性。
The fixed key and international cryptographic algorithm used in the traditional security bus have some uncontrollable factors and security risk in its design.A novel method of a security parallel bus is proposed to solve the security risk of traditional bus transmission.The key generation mechanism and ring oscillator physical unclonable function are designed in the security parallel bus.The key is generated by the SM3 algorithm with the input of the physical unclonable function and random number generator.The transmitting data on the bus is encrypted using SM4 algorithm.When encrypting,random numbers are used to fill plaintext for security reasons.These guarantee the security of bus data transmission.The bus implemented by this security mechanism can effectively resist the intrusive analysis,the replay attack,and the key cracking,thus ensure data security and confidentiality.At last,a bus encryption simulation platform is built up and the results are presented to validate the proposed method feasible.
作者
习伟
杜之波
吴震
兰天
李汶璐
XI Wei;DU Zhibo;WU Zhen;LAN Tian;LI Wenlu(Electric Power Research Institute,CSG,Guangzhou 510663,China;Digtal Grid Research Institute,CSG,Guangzhou 510663,China;School of Cybersecurity,Chengdu University of InformationTechnolgy,Chengdu 610225,China;Huada Semiconductor Co.,Ltd.,Shanghai 200120,China)
出处
《南方电网技术》
CSCD
北大核心
2020年第1期46-51,共6页
Southern Power System Technology
基金
国家重点研发计划(2018YFB0904900,2018YFB0904901)
“十三五”国家密码发展基金资助项目(MMJJ20180224)
四川省重点研发项目(2019YFG0096)。
