计算机应用 ›› 2020, Vol. 40 ›› Issue (5): 1340-1347.DOI: 10.11772/j.issn.1001-9081.2019091699

• 网络空间安全 • 上一篇    下一篇

基于订阅/发布服务的广域信息管理系统应急响应机制

吴志军, 王航   

  1. 中国民航大学 电子信息与自动化学院,天津 300300
  • 收稿日期:2019-10-10 修回日期:2019-12-11 出版日期:2020-05-10 发布日期:2020-05-15
  • 通讯作者: 吴志军(1965—)
  • 作者简介:吴志军(1965—),男,新疆库尔勒人,教授,博士,主要研究方向:网络与信息安全; 王航(1992—),男,河北保定人,硕士研究生,主要研究方向:广域信息管理、信息安全。
  • 基金资助:

    国家自然科学基金委员会与中国民航局联合基金资助项目(U1933108);中央高校基本科研业务费资助项目(3122018D007)。

System wide information management emergency response mechanism based on subscribe/publish service

WU Zhijun, WANG Hang   

  1. College of Electronic Information and Automation, Civil Aviation University of China, Tianjin 300300, China
  • Received:2019-10-10 Revised:2019-12-11 Online:2020-05-10 Published:2020-05-15
  • Contact: WU Zhijun, born in 1965, Ph. D., professor. His research interests include network and information security.
  • About author:WU Zhijun, born in 1965, Ph. D., professor. His research interests include network and information security.WANG Hang, born in 1992, M. S., candidate. His research interests include system wide information management, information security.
  • Supported by:

    This work is partially supported by the Joint Fund of Committee of National Natural Science Foundation of China and Civil Aviation Administration of China (U1933108), the Fundamental Research Funds for the Central Universities (3122018D34007).

摘要:

广域信息管理系统(SWIM)是一个分布式的大型网络系统,它实时地向空中交通管理部门、航空机场和航空公司等提供不间断的航空信息数据共享和传输服务。为了保障SWIM服务的连续性,研究了基于订阅/发布服务的SWIM系统应急响应机制。首先,根据实时监测SWIM网络的各性能指标,提出了基于改进的模糊层次分析的网络可生存性评估方法;其次,当SWIM网络生存性指标下降到低于参量的边界值时,发布相应信息到订阅者,由订阅者确定是否进行服务漂移;最后,分别针对自然灾害和分布式拒绝服务(DDoS)攻击两种情况,提出了基于订阅/发布服务的SWIM应急响应模型(ERMSP),该模型以订阅发布和信任管理机制为基础。仿真实验结果表明,通过对网络性能各指标的实时监测和部署ERMSP,可抵抗性提高了8.9%,业务连续性提高了18.2%,可以实现SWIM的应急响应。

关键词: 分布式系统, 订阅发布, 广域信息管理系统, 应急响应

Abstract:

System Wide Information Management (SWIM) is a distributed, large-scale network system that provides uninterrupted aviation information data sharing and transmission services to air traffic management departments, airports and airlines in real time. In order to guarantee the continuity of SWIM services, the emergency response mechanism of SWIM based on subscription/release service was studied. Firstly, by real-time monitoring various performance indicators of SWIM network, a network survivability evaluation method based on improved fuzzy analytic hierarchy process was proposed. Secondly, when the network survivability index fell below the boundary value of the parameter, the corresponding information was published to the subscriber. It was determined by the subscriber whether to perform the service migration. Finally, an Emergency Response Model based on Subscribe/Publish service (ERMSP) for SWIM was proposed for natural disasters and Distributed Denial of Service (DDoS) attacks. The model is based on subscribe, publish and trust management mechanisms. Simulation experimental results show that the resistibility is improved by 8.9% and the business continuity is improved by 18.2% by real-time monitoring of network performance indicators and deployment of ERMSP, which can realize the emergency response of SWIM.

Key words: distributed system, subscribe/publish, System Wide Information Management (SWIM), emergency response

中图分类号: