摘要
提出基于遗传算法的计算机网络安全路由优化方法,根据认证、接入控制和加密机制,多方向量化链路安全,结合服务质量参数构建多目标安全路由模型。根据公共缓冲池与最小预留带宽的分配,选取多目标安全路由模型优化目标为:可行路径平均时延最低、三类安全度量最低以及最大带宽利用率最低等。采用自适应遗传算法,以求解最优染色体编码问题替代计算机网络安全路由问题;设置适应度函数,将计算机网络安全路由的目标函数最小化问题变换成最大化问题;选取算子进行交叉与变异,通过遗传算法求解确定适应度值最优的个体,实现计算机网络安全路由优化。仿真结果显示:该方法确定路径的平均时延为135 ms左右,平均最大带宽利用率在0.5%左右,三类安全度量数值均低于其他两种对比方法,说明该方法更能保障计算机网络通畅与资源使用安全性。
It is a new research idea in the field of computer network security routing to take security metrics as service quality parameter when optimizing network routing.An optimization method of computer network security routing based on genetic algorithm is proposed.According to the authentication,the access control and the encryption mechanism,the link security is quantified in multiple directions,and a multi-objective secure routing model is constructed with the reference of the service quality parameters.According to the allocation of common buffer pool and the minimum reserved bandwidth,the optimization goals of multi-objective security routing model is to achieve the lowest average delay of feasible path,the lowest security metrics of the three types and the lowest maximum bandwidth utilization rate.The adaptive genetic algorithm is adopted to make the optimal chromosome coding instead of the computer network security routing;the fitness function is set to transform the objective function minimization of computer network security routing into the objective function maximization;the operator is selected for crossover and mutation,and individuals with the best fitness value are determined by genetic algorithm to realize the optimization of computer network security routing.The simulation results show that the average delay of the path determination by the proposed method is about 135 ms,the average maximum bandwidth utilization rate is about 0.5%,and the three types of security metrics are lower than the other two methods.It is verified that the method can better guarantee the computer network access and resource security.
作者
罗婷婷
邹航菲
LUO Tingting;ZOU Hangfei(Department of Scientific Research and Development Planning,Jiangxi Police Institute,Nanchang 330103,China;Department of Human Resource,Jiangxi Police Institute,Nanchang 330103,China)
出处
《现代电子技术》
北大核心
2020年第7期78-81,共4页
Modern Electronics Technique
基金
江西省教育厅科学技术研究重点项目:面向防御的网络欺骗技术研究(GJJ181008)。
关键词
遗传算法
计算机网络
安全路由
安全度量
带宽链路
适应度函数
genetic algorithm
computer network
security routing
security metrics
bandwidth link
fitness function
