-
Tytuł:
-
A Security Management and Control Solution of Smart Park Based on Sensor Networks.
-
Autorzy:
-
Zhao Y; Science and Technology on Communication Security Laboratory, Chengdu 610041, China.
Tian B; Science and Technology on Communication Security Laboratory, Chengdu 610041, China.
Niu Y; Science and Technology on Communication Security Laboratory, Chengdu 610041, China.
Zhang H; Science and Technology on Communication Security Laboratory, Chengdu 610041, China.
Yi Z; No.30 Research Institute of China Electronics Technology Group Corporation, Chengdu 610041, China.
Zeng R; Science and Technology on Communication Security Laboratory, Chengdu 610041, China.
-
Źródło:
-
Sensors (Basel, Switzerland) [Sensors (Basel)] 2021 Oct 13; Vol. 21 (20). Date of Electronic Publication: 2021 Oct 13.
-
Typ publikacji:
-
Journal Article
-
Język:
-
English
-
Imprint Name(s):
-
Original Publication: Basel, Switzerland : MDPI, c2000-
-
MeSH Terms:
-
Algorithms*
Computer Security*
-
Grant Information:
-
U20B2049 National Natural Science Foundation of China
-
Contributed Indexing:
-
Keywords: Merkle tree; joint authorization and dynamic access control; security management and control; sensor networks; smart park
-
Entry Date(s):
-
Date Created: 20211026 Date Completed: 20211027 Latest Revision: 20211029
-
Update Code:
-
20240105
-
PubMed Central ID:
-
PMC8541056
-
DOI:
-
10.3390/s21206815
-
PMID:
-
34696029
-
As a typical application of sensor networks, there exist many information security problems in smart parks, such as confusion of personnel access, lack of security management, disorderly data flow, insufficient collection of audit evidence, and so on. Aiming at the scenario of personnel and equipment moving in different areas of smart parks, the paper proposes a joint authorization and dynamic access control mechanism, which can provide unified identity management services, access control services, and policy management services, and effectively solve the problem of multi-authorization in user identity and authority management. The license negotiation interaction protocol is designed to prevent common network attack threats in the process of identity authentication and authority management. In order to realize the tamper-proof storage of personnel and equipment movement trajectory, the paper also designs a movement trajectory traceability protocol based on a Merkle tree, which solves the problems of internal personnel malicious attack, trusted third-party dependency bottleneck, high overheads of tracking algorithms, and so on. The experimental results show that compared with the current security control mechanisms for sensor networks, the joint authorization, and dynamic access control mechanism can support multi-party authorization and traceability, while the overhead it generates in initialization, encryption, decryption, and key generation steps are basically the same as other mechanisms do.