基于SGX的车联网路况监测安全数据处理框架

doi:10.11772/j.issn.1001-9081.2022050734

《计算机应用》唯一官方网站

• • 下一篇

基于SGX的车联网路况监测安全数据处理框架

冯睿琪^1,2，王雷蕾^1,2，林翔^1,2，熊金波^1,2

1.福建师范大学计算机与网络空间安全学院，福州 2.福建师范大学福建省网络安全与密码技术重点实验室，福州

收稿日期:2022-05-20 修回日期:2022-06-14 发布日期:2022-06-30 出版日期:2022-06-30
通讯作者: 熊金波
作者简介:冯睿琪(1999—)，女，内蒙古包头人，硕士研究生，CCF会员，主要研究方向：安全深度学习，隐私保护技术；王雷蕾(1999—)，女，湖南湘潭人，硕士研究生，CCF会员，主要研究方向：安全深度学习；林翔(1996—)，男，福建福州人，硕士研究生，CCF会员，主要研究方向：安全深度学习；熊金波(1981—)，男，湖南益阳人，教授，博士，CCF高级会员，主要研究方向：安全深度学习、移动群智感知、隐私保护技术。
基金资助:
国家自然科学基金资助项目(61872088)

SGX-based secure data processing framework for traffic monitoring of Internet of Vehicle

FENG Ruiqi^1,2, WANG Leilei^1,2, LIN Xiang^1,2, XIONG Jinbo^1,2

1.College of Computer and Cyber Security, Fujian Normal University 2.Fujian Provincial Key Laboratory of Network Security and Cryptology, Fujian Normal University

Received:2022-05-20 Revised:2022-06-14 Online:2022-06-30 Published:2022-06-30
Contact: XIONG Jinbo
About author:FENG Ruiqi, born in 1999, M.S. candidate. Her research interests include secure deep learning, privacy protection technology. WANG Leilei, born in 1999, M.S. candidate. Her research interests include secure deep learning. LIN Xiang, born in 1996, M.S. candidate. His research interests include secure deep learning. XIONG Jinbo, born in 1981, Ph D., professor. His research interests include secure deep learning, mobile crowdsensing, privacy protection technology.
Supported by:
National Natural Science Foundation of China (61872088)

摘要/Abstract

摘要： 车联网路况监测需对用户隐私数据进行传输、存储与分析等处理，因而保障隐私数据安全尤为重要，但传统的安全解决方案难以同时保障实时计算与数据安全。针对上述问题，设计初始化协议与定期报告协议等一系列安全协议，构建基于软件防护扩展（SGX）技术的车联网路况监测安全数据处理框架（SDPF）。SDPF利用可信硬件在路侧单元内实现隐私数据的明文计算，通过安全协议和回合加密方案保证框架的高效运行与隐私保护。安全性分析表明，SDPF可抵御窃听、篡改、重放、假冒、回滚等攻击；实验结果表明，SDPF的各项计算操作均为毫秒级，单车辆的所有数据处理开销低于1 ms。与基于雾计算的PFCF和基于同态加密的PPVF相比，SDPF安全设计更加全面，单词会话消息长度减少90%以上，计算时间减少33%以上。

关键词: 车联网, 软件防护扩展, 路况监测, 路侧单元, 数据安全

Abstract: Internet of Vehicle (IoV) traffic monitoring requires the transmission, storage, and analysis of private user data, making the security of private data particularly crucial. Traditional security solutions are often hard to guarantee real-time computing and data security at the same time. To address above issues, a serial of security protocols, including two initialization protocols and periodic reporting protocol, were designed to build an SGX-based secure data processing framework for IoV traffic monitoring (SDPF). The SDPF utilizes trusted hardware to enable the plaintext computation of private data in road side unit, and ensures efficient operation and privacy protection of the framework through security protocols and hybrid encryption scheme. Security analysis shows that SDPF is resistant to eavesdropping, tampering, replay, impersonation, rollback, and other attacks. Ample experiment results that all computational operations of SDPF are millisecond level, specifically, all data processing overhead of a single vehicle is less than 1 millisecond. Compared with PFCF (Privacy-preserving Fog Computing Framework for vehicular crowdsensing networks) based on fog computing, PPVF (Privacy-preserving Protocol for Vehicle Feedback in cloud-assisted VANET) based on Homomorphic encryption, the security design of SDPF is more comprehensive, the message length of a single session is reduced by more than 90%, and the computation costs are reduced by more than 33%.

Key words: Internet of Vehicle (IoV), Software Guard Extensions (SGX), traffic monitoring, road side unit, data security

中图分类号:

TP309.2

冯睿琪王雷蕾林翔熊金波. 基于SGX的车联网路况监测安全数据处理框架[J]. 计算机应用, DOI: 10.11772/j.issn.1001-9081.2022050734.

FENG Ruiqi, WANG Leile, LIN Xiang, XIONG Jinbo. SGX-based secure data processing framework for traffic monitoring of Internet of Vehicle[J]. Journal of Computer Applications, DOI: 10.11772/j.issn.1001-9081.2022050734.

[1]	王界钦, 林士飏, 彭世明, 贾硕, 杨苗会. 协同移动边缘计算分层资源配置机制[J]. 《计算机应用》唯一官方网站, 2022, 42(8): 2501-2510.
[2]	李智, 薛建彬. C‑V2X车联网中基于模拟退火算法的任务卸载与资源分配[J]. 《计算机应用》唯一官方网站, 2022, 42(10): 3140-3147.
[3]	朱栋, 殷新春, 宁建廷. 车联网中具有强隐私保护的无证书签名方案[J]. 《计算机应用》唯一官方网站, 2022, 42(10): 3091-3101.
[4]	陈成瑞, 孙宁, 何世彪, 廖勇. 面向C-V2X通信的基于深度学习的联合信道估计与均衡算法[J]. 计算机应用, 2021, 41(9): 2687-2693.
[5]	申玉民, 王金龙, 胡殿凯, 刘星宇. 基于区块链的建筑信息模型图纸多人协同创作系统[J]. 计算机应用, 2021, 41(8): 2338-2345.
[6]	陈葳葳, 曹利, 顾翔. 基于区块链的车联网电子取证模型[J]. 计算机应用, 2021, 41(7): 1989-1995.
[7]	王家瑞, 谭国平, 周思源. 高速车联网场景下分簇式无线联邦学习算法[J]. 计算机应用, 2021, 41(6): 1546-1550.
[8]	秦静, 安雯, 季长清, 汪祖民. 无线体域网隐私保护机制研究综述[J]. 计算机应用, 2021, 41(4): 970-975.
[9]	高昊昱, 李雷孝, 林浩, 李杰, 邓丹, 李少旭. 区块链在数据完整性保护领域的研究与应用进展[J]. 计算机应用, 2021, 41(3): 745-755.
[10]	巫光福, 王影军. 基于区块链与云-边缘计算混合架构的车联网数据安全存储与共享方案[J]. 计算机应用, 2021, 41(10): 2885-2892.
[11]	陈锦宇, 刘兆伟. 基于改进投票证明共识协议的车联网系统[J]. 计算机应用, 2021, 41(1): 170-176.
[12]	黄辰, 曹建农, 王时绘, 张龑. 基于协作反馈控制算法的车联网行车安全动态强化模型[J]. 计算机应用, 2020, 40(4): 1209-1214.
[13]	陈葳葳, 曹利, 邵长虹. 基于区块链技术的车联网高效匿名认证方案[J]. 计算机应用, 2020, 40(10): 2992-2999.
[14]	张国潮, 王瑞锦. 基于门限秘密共享的区块链分片存储模型[J]. 计算机应用, 2019, 39(9): 2617-2622.
[15]	樊娜, 朱光源, 康军, 唐蕾, 朱依水, 王路阳, 段嘉欣. 车联网环境下基于节点认知交互的路由算法[J]. 计算机应用, 2019, 39(2): 518-522.

基于SGX的车联网路况监测安全数据处理框架

SGX-based secure data processing framework for traffic monitoring of Internet of Vehicle

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics