[1]汤永利,赵文静,梁 博,等.基于随机性检测的ZigBee协议安全传输 测试方法研究[J].南京理工大学学报(自然科学版),2015,39(01):78-83.
 Tang Yongli,Zhao Wenjing,Liang Bo,et al.Secure transmission test method of ZigBee protocol based on randomness detection[J].Journal of Nanjing University of Science and Technology,2015,39(01):78-83.
点击复制

基于随机性检测的ZigBee协议安全传输 测试方法研究
分享到:

《南京理工大学学报》(自然科学版)[ISSN:1005-9830/CN:32-1397/N]

卷:
39卷
期数:
2015年01期
页码:
78-83
栏目:
出版日期:
2015-02-28

文章信息/Info

Title:
Secure transmission test method of ZigBee protocol based on randomness detection
作者:
汤永利1赵文静1梁 博2赵章界2
1.河南理工大学 计算机科学与技术学院,河南 焦作 454003; 2.北京信息安全测评中心,北京 100101
Author(s):
Tang Yongli1Zhao Wenjing1Liang Bo2Zhao Zhangjie2
1.School of Computer Science and Technology,Henan Polytechnic University,Jiaozuo 454003,China; 2.Beijing Information Security Test and Evaluation Center,Beijing 100101,China
关键词:
物联网安全 随机性检测 ZigBee协议 加密测试 数据帧结构
Keywords:
internet of things security randomness detection ZigBee protocol encryption testing data frame structure
分类号:
TP393
摘要:
为了有效鉴别和测试ZigBee协议传输数据的加密措施,该文结合ZigBee协议的安全工作模式,提出了基于随机性检测的ZigBee协议安全测试方法。该方法综合考虑测试序列的随机性和测试的有效性,采用典型随机性检测算法构造合理的测试方案。同时通过对网络层与应用层数据帧结构特点的分析,以及ZigBee设备中不同加密机制传输数据的测试,可有效鉴别传输数据是否加密; 并通过分析负载数据加密字节的位置,可判断ZigBee协议数据的加密层级。实验结果表明:该方法不仅适用于判断ZigBee协议数据是否采取加密传输及其加密
Abstract:
In order to effectively identify and test the encryption measures of ZigBee protocol,this paper studies secure working mode with ZigBee protocol and proposes a new security testing method based on randomness detection.This method synthetically considers the randomness of test sequences and test effectiveness,and uses the typical randomness detection algorithm to construct a reasonable testing program.By analyzing the characteristics of data frame structure in ZigBee network layer and application layers and testing ZigBee protocol data of different encryption mechanisms,this paper can effectively identify whether the transmission data are encrypted or not.By analyzing the encryption positions of load byte data,this paper can determine the encryption level of the ZigBee protocol data.The experimental results show that this method can accurately identify whether the ZigBee protocol data are encrypted and use the encryption level and can effectively test the encryption strength.

参考文献/References:

[1] GB/T 22239-2008,信息安全技术 信息系统安全等级保护基本要求[S].
[2]范丽敏,冯登国,陈华.基于熵的随机性检测相关性研究[J].软件学报,2009,20(7):1967-1976.
Fan Limin,Feng Dengguo,Chen Hua.Study on the correlation between randomness tests based on entropy[J].Journal of Software,2009,20(7):1967-1976.
[3]Tsang W W,Hui L C K,Chow K P,et al.Tuning the collision test for power[A].Proceedings of the 27th Australasian Conference on Computer Science[C].Darlinghurst,Australia:Australian Computer Society,2004:23-30.
[4]Wang Dechang,Cui Xuenan,Park E,et al.Adaptive flame detection using randomness testing and robust features[J].Fire Safety Journal,2013,55:116-125.
[5]董满才,芮筱亭,王国平.随机参数多体系统特征值随机特性分析方法研究[J].南京理工大学学报,2006,30(4):458-461.
Dong Mancai,Rui Xiaoting,Wang Guoping.Analysis methods of random eigenvalue of mutibody system with random parameters[J].Journal of Nanjing University of Science and Technology,2006,30(4):458-461.
[6]陈建锐,何增颖.基于动态优化因子的ZigBee协议优化仿真算法[J].计算机仿真,2013,30(7):272-275.
Chen Jianrui,He Zengying.Zigbee protocol optimization simulation algorithm based on dynamic optimization factors[J].Computer Simulation,2013,30(7):272-275.
[7]Bakhache B,Ghazal J M,Assa S E.Improvement of the security of ZigBee by a New Chaotic Algorithm[J].IEEE Systems Journal,2013,3:1-10.
[8]Yang Bin,Fu Renyi,Diao Jianzhong,et al.Security mechanisms analysis for ZigBee standard based on AES-CCM*[J].Advanced Materials Research,2012,468-471:1359-1362.
[9]El-Hamawi E,Bakhache B,Rostom R.An improved authenticated key agreement protocol for low power networks[A].Proceedings of the 17 IEEE Mediterranean Electrotechnical Conference[C].Beirut,Lebanon:IEEE,2014:426-431.
[10]任秀丽,于海斌.ZigBee技术的无线传感网络的安全性研究[J].仪器仪表学报,2007,12(28):2132-2137.
Ren Xiuli,Yu Haibin.Study on security of ZigBee wireless sensor network[J].Chinese Journal of Scientific Instrument,2007,12(28):2132-2137.
[11]师国栋,康绯,顾海文.随机性测试的研究与实现[J].计算机工程,2009,35(20):145-147.
Shi Guodong,Kang Fei,Gu Haiwen.Research and implementation of randomness tests[J].Computer Engineering,2009,35(20):145-147.
[12]刘志巍.密码算法的随机性测试研究[D].西安:西安电子科技大学通信工程学院,2011.
[13]戴家佳.多元拟合优度检验与复发事件数据统计分析[D].北京:北京工业大学应用数理学院,2009.
[14]NIST SP 800-22 Revision 1a-2010,A Statistical Test Suite for Random and Pseudorandom Number Generators for Cryptographic Applications[S].
[15]ZigBee Document 053474r17-2008,ZigBee Specification[S].

备注/Memo

备注/Memo:
收稿日期:2014-06-18 修回日期:2014-11-25
基金项目:国家自然科学基金(61300216); 国家留学基金(201208410155); 河南省科技攻关重点项目(122102310309); 河南省基础与前沿技术研究(142300410147); 河南理工大学博士基金(B2011-058)
作者简介:汤永利(1972-),男,副教授,主要研究方向:信息安全,密码学,E-mail:yltang@hpu.edu.cn。
引文格式:汤永利,赵文静,梁博,等.基于随机性检测的ZigBee协议安全传输测试方法研究[J].南京理工大学学报,2015,39(1):78-83.
投稿网址:http://zrxuebao.njust.edu.cn
更新日期/Last Update: 2015-02-28