摘要
为了有效鉴别和测试Zig Bee协议传输数据的加密措施,该文结合Zig Bee协议的安全工作模式,提出了基于随机性检测的Zig Bee协议安全测试方法。该方法综合考虑测试序列的随机性和测试的有效性,采用典型随机性检测算法构造合理的测试方案。同时通过对网络层与应用层数据帧结构特点的分析,以及Zig Bee设备中不同加密机制传输数据的测试,可有效鉴别传输数据是否加密;并通过分析负载数据加密字节的位置,可判断Zig Bee协议数据的加密层级。实验结果表明:该方法不仅适用于判断Zig Bee协议数据是否采取加密传输及其加密层级,而且也能用于测试Zig Bee协议数据的加密强度。
In order to effectively identify and test the encryption measures of ZigBee protocol,this paper studies secure working mode with ZigBee protocol and proposes a new security testing method based on randomness detection. This method synthetically considers the randomness of test sequences and test effectiveness,and uses the typical randomness detection algorithm to construct a reasonable testing program. By analyzing the characteristics of data frame structure in ZigBee network layer and application layers and testing ZigBee protocol data of different encryption mechanisms,this paper can effectively identify whether the transmission data are encrypted or not. By analyzing the encryption positions of load byte data,this paper can determine the encryption level of the ZigBee protocol data.The experimental results show that this method can accurately identify whether the ZigBee protocol data are encrypted and use the encryption level and can effectively test the encryption strength.
出处
《南京理工大学学报》
EI
CAS
CSCD
北大核心
2015年第1期78-83,共6页
Journal of Nanjing University of Science and Technology
基金
国家自然科学基金(61300216)
国家留学基金(201208410155)
河南省科技攻关重点项目(122102310309)
河南省基础与前沿技术研究(142300410147)
河南理工大学博士基金(B2011-058)
关键词
物联网安全
随机性检测
ZIGBEE协议
加密测试
数据帧结构
internet of things security
randomness detection
Zig Bee protocol
encryption testing
data frame structure
作者简介
汤永利(1972-),男,副教授,主要研究方向:信息安全,密码学,E-mail:yltang@hpu.edu.cn。
