计算机应用 ›› 2014, Vol. 34 ›› Issue (3): 728-732.DOI: 10.11772/j.issn.1001-9081.2014.03.0728

• 计算机安全 • 上一篇    下一篇

实现欧洲/电气安装总线协议数据加密和设备认证的方法

丁俊,张曦煌   

  1. 江南大学 物联网工程学院,江苏 无锡214122
  • 收稿日期:2013-09-16 修回日期:2013-11-09 出版日期:2014-03-01 发布日期:2014-04-01
  • 通讯作者: 丁俊
  • 作者简介:丁俊(1987-),男,江苏宿迁人,硕士研究生,主要研究方向:计算机网络、嵌入式系统;张曦煌(1962-),男,江苏无锡人,教授,主要研究方向:嵌入式系统、先进计算、计算机网络。

Implementation of data encryption and device authentication in Konnex/European installation bus protocol

DING Jun,ZHANG Xihuang   

  1. College of Internet of Things Engineering, Jiangnan University, Wuxi Jiangsu 214122, China
  • Received:2013-09-16 Revised:2013-11-09 Online:2014-03-01 Published:2014-04-01
  • Contact: DING Jun

摘要:

为了实现家居和建筑自动化(HBA)的数据安全传输,在欧洲安装总线(KNX/EIB)标准协议引入加密和认证机制;使用迪菲赫尔曼(Diffie-Hellman)算法实现非对称密钥共享,高级加密标准(AES)实现数据加密,基于哈希算法的挑战握手认证协议实现设备认证,使用控制器协调密钥分享和设备认证过程。模拟实验表明,所提方法在空间和时间上都是可行的,比其他改进方法更容易实现,操作更简单,能够保证数据的安全。

关键词: 家居与建筑自动化, 迪菲-赫尔曼, 高级加密标准, 哈希算法, 挑战握手认证

Abstract:

To implement secure data transition in Home and Building Automation (HBA), an encryption and authentication mechanism was introduced into Konnex/European Installation Bus (KNX/EIB). Diffie-Hellman algorithm was used to realize asymmetric key sharing, Advanced Encryption Standard (AES) was applied to data encryption, Hash algorithm was adopted for challenge authentication, a device named controller was employed to coordinate the procedure of key sharing and device authentication. The simulation results show the proposed method is feasible concerning the space and time cost. Compared to other improvement methods, this one is easier to implement and operate, and it can ensure data security.

Key words: Home and Building Automation(HBA), Diffie-Hellman, AES, Hash, Challenge Authentication

中图分类号: