可用带宽测量对于网络行为分析、网络服务质量(quality of service,简称QoS)的验证等有很重要的作用.现有可用带宽测量工作主要集中在端到端路径可用带宽测量,仅提供路径上承压链路(tight link)的信息,而不能提供其他关键链路的信息.为...可用带宽测量对于网络行为分析、网络服务质量(quality of service,简称QoS)的验证等有很重要的作用.现有可用带宽测量工作主要集中在端到端路径可用带宽测量,仅提供路径上承压链路(tight link)的信息,而不能提供其他关键链路的信息.为此,提出一种新颖的链路可用带宽测量算法LinkPPQ(trains of pairs of packet-quartets used to measure available bandwidth of arbitrary links),它采用由四探测分组结构对构成的探测序列,能够测量网络中任意链路的可用带宽,并跟踪该链路上背景流的变化.在仿真环境和实际网络环境下研究了LinkPPQ的性能.仿真结果表明,在几种不同背景流场景下,对于具有单狭窄链路的路径和具有多狭窄链路的路径,LinkPPQ都能够对各个链路的可用带宽进行有效的测量.绝大多数情况下测量误差小于30%,且具有较好的测量平稳性.实验网的实验结果也表明,LinkPPQ可以准确测量以下几种情况下的链路的可用带宽:a)从容量为10Mbps的链路准确地测量一条100Mbps链路的可用带宽;b)准确测量容量10倍于紧邻其后狭窄链路的容量的链路的可用带宽;c)准确测量具有多狭窄链路的路径上各狭窄链路的可用带宽.展开更多
Internet of things has been widely applied to industrial control, smart city and environmental protection, in these applica- tion scenarios, sensing node needs to make real-time response to the feedback control of the...Internet of things has been widely applied to industrial control, smart city and environmental protection, in these applica- tion scenarios, sensing node needs to make real-time response to the feedback control of the application layer. Therefore, it is nec- essary to monitor whether or not awareness nodes are trusted in real time, but the existing mechanisms for trusted certification lack the real-time measurement and tracking of the sensing node. To solve the above problems, this paper proposes a dynamic metric based authentication mechanism for sensing nodes of Internet of things. Firstly, the dynamic trustworthiness measure of the sensing nodes is carried out by introducing the computational function such as the trust function, the trust- worthiness risk assessment function, the feed- back control function and the active function of the sensing node. The dynamic trustworthi- ness measure of sensing nodes from multiple dimensions can effectively describe the change of trusted value of sensing nodes. Then, on the basis of this, a trusted attestation based on node trusted measure is realized by using the revocable group signature mechanism of local verifier. The mechanism has anonymity, un- forgeability and traceability, which is proved the security in the standard model. Simulationexperiments show that the proposed trusted attestation mechanism is flexible, practical and ef|Scient and has better attack resistance. It can effectively guarantee the reliable data transmission of nodes and realize the dynamic tracking of node reliability, which has a lower impact on system performance.展开更多
文摘可用带宽测量对于网络行为分析、网络服务质量(quality of service,简称QoS)的验证等有很重要的作用.现有可用带宽测量工作主要集中在端到端路径可用带宽测量,仅提供路径上承压链路(tight link)的信息,而不能提供其他关键链路的信息.为此,提出一种新颖的链路可用带宽测量算法LinkPPQ(trains of pairs of packet-quartets used to measure available bandwidth of arbitrary links),它采用由四探测分组结构对构成的探测序列,能够测量网络中任意链路的可用带宽,并跟踪该链路上背景流的变化.在仿真环境和实际网络环境下研究了LinkPPQ的性能.仿真结果表明,在几种不同背景流场景下,对于具有单狭窄链路的路径和具有多狭窄链路的路径,LinkPPQ都能够对各个链路的可用带宽进行有效的测量.绝大多数情况下测量误差小于30%,且具有较好的测量平稳性.实验网的实验结果也表明,LinkPPQ可以准确测量以下几种情况下的链路的可用带宽:a)从容量为10Mbps的链路准确地测量一条100Mbps链路的可用带宽;b)准确测量容量10倍于紧邻其后狭窄链路的容量的链路的可用带宽;c)准确测量具有多狭窄链路的路径上各狭窄链路的可用带宽.
基金supported by the National Natural Science Foundation of China (The key trusted running technologies for the sensing nodes in Internet of things: 61501007, The research of the trusted and security environment for high energy physics scientific computing system: 11675199)General Project of science and technology project of Beijing Municipal Education Commission: KM201610005023+2 种基金the outstanding personnel training program of Beijing municipal Party Committee Organization Department (The Research of Trusted Computing environment for Internet of things in Smart City: 2014000020124G041)The key technology research and validation issue for the emergency treatment telemedicine public service platform which integrates the military and civilian and bases on the broadband wireless networks (No.2013ZX03006001-005)the issue belongs to Major national science and technology projects
文摘Internet of things has been widely applied to industrial control, smart city and environmental protection, in these applica- tion scenarios, sensing node needs to make real-time response to the feedback control of the application layer. Therefore, it is nec- essary to monitor whether or not awareness nodes are trusted in real time, but the existing mechanisms for trusted certification lack the real-time measurement and tracking of the sensing node. To solve the above problems, this paper proposes a dynamic metric based authentication mechanism for sensing nodes of Internet of things. Firstly, the dynamic trustworthiness measure of the sensing nodes is carried out by introducing the computational function such as the trust function, the trust- worthiness risk assessment function, the feed- back control function and the active function of the sensing node. The dynamic trustworthi- ness measure of sensing nodes from multiple dimensions can effectively describe the change of trusted value of sensing nodes. Then, on the basis of this, a trusted attestation based on node trusted measure is realized by using the revocable group signature mechanism of local verifier. The mechanism has anonymity, un- forgeability and traceability, which is proved the security in the standard model. Simulationexperiments show that the proposed trusted attestation mechanism is flexible, practical and ef|Scient and has better attack resistance. It can effectively guarantee the reliable data transmission of nodes and realize the dynamic tracking of node reliability, which has a lower impact on system performance.
