| The security of satellite network is mainly guaranteed by satellite terminal security module.However,the software design and development of satellite terminal security module can not be absolutely perfect,there will be a variety of problems and even software leaks;In addition,in some special cases,such as the current version of the software needs to be rolled back,a function of the security module needs to be changed at the functional level according to the actual situation,or the whole or part of the software component is updated,the management personnel must reconstruct the satellite terminal security module.This paper designs and implements a satellite terminal security module software reconstruction system.On the basis of comprehensive research,the thesis mainly does the following work:(1)The research of this paper designs and implements a document distribution technology,which has two modes to realize document distribution: one is centralized reconstruction mode;The other is the P2 P reconstruction mode.Administrators on satellite networks can choose the appropriate reconstruction mode according to the actual needs.In this document distribution technology,it is necessary to reconstruct all the satellite terminal security modules in a certain logical area at the software level.This paper designs and implements the reconstruction function of the specified area corresponding to the two modes of document distribution technology.(2)In the satellite network,some very critical satellite terminals exist in the NAT network environment.To apply P2 P technology in this case,NAT traversal must be solved.In this paper,a NAT traversal scheme is designed and implements,in which the reflected communication address is the main address and the relay forwarding mode is the auxiliary.STUN and TURN technologies are used and the reflection server is designed to reflect the corresponding external network communication address to the node inside the NAT network.After the reflection succeeds,the obtained communication address is used for communication.If reflection fails,the reflection server is used to implement NAT penetration in transit mode.(3)In the process of data transmission of software reconstruction on satellite network,events such as malicious modification,truncation and replay attack of data transmitted to the network often occur,which seriously threatens the software reconstruction system.Using hybrid encryption technology this paper designed and implemented the satellite terminal refactoring file safe transmission scheme,to ensure that in the process of reconstruction of satellite transmission on the network data are all correct,complete,and non-repudiation of the data source,to ensure the correctness and robustness in the process of satellite data transmission on the network,at the same time to ensure the rapid transmission of data. |
PDF Full Text Request