| The development of wireless networks has extended many new methods and technologies.The IoT(Internet of Things)which realizes the interconnection of things through wireless networks and wired networks,has developed particularly rapidly.As one of the fastest growing and most widely used application scenarios in Internet of Things,the smart home network has become an important target for attackers to focus on and attack.Because of its limited capability,smart home devices security relay on the security mechanism of gatway.However the security mechanism realized by NAT(Network Address Translation)on gatway not only cannot take effect on attacks initiated by intranet,but also cannot defend against attacks initiated by external network which penetrates NAT using vulnerabilities of UPnP(Universal Plug and Play).In view of the above problems,this thesis focuses on the wireless network environment for smart home,and studies the access control and security protection technologies of smart home devices based on the study of the security in the smart home network and the construction of attack scenarios.This thesis proposes a smart home network accessing control method based on user's intent and SDN.This method effectively realizes the security protection for smart home devices by the cooperation between the smart home control application and SDN controller.The main work of this thesis is as follows:(1)Studying the security of smart home networks.Based on the analysis of the topology and security of the smart home network,discussing the attack methods and technologies for the smart home network.According to the studying,constructing the attack scenario for the smart home network to lay foundation of studying the protecting method for smart home network.(2)Proposing A smart home network access control method based on user intent and SDN.The control intention of the user is the intention of controlling smart home device,control intention of the user and the operation of the control application are prerequisites for the action of the smart home device.By combining the user's intention perception of the control application with the traffic classification of the SDN controller,generating flow table rules according to the control application's state and classification result.Thereby,the implements of security access control for smart home devices can be effectively.(3)Designing and implementing a security protection system for smart home network based on user's intent and SDN.The security protection system utilizes the monitoring of the control application state and the separation characteristics of the SDN's data plane and the control plane,generates the flow table rules of access control that can realize the security protection ability based on the traffic classification information and the control application state,realizing the security of the wireless network environment for the smart home scenario. |
PDF Full Text Request