| With the rapid growth of mobile communication users,the performance of 5G will be difficult to support future communication scenarios.Compared with the 5G network,B5G will further increase the communication rate,expand the communication boundary,and the network architecture will also shift from a single architecture to a microservice architecture.While the introduction of microservices brings benefits such as rapid development,elastic assembly,and flexible deployment to B5G networks,it also brings many security challenges,such as access control issues for microservices.This paper deeply studies the main characteristics of the B5G microservice architecture and the security risks it faces.Aiming at the problem that the existing access control authorization mechanism is too single,a microservice access control model based on behavior information is proposed to complete the microservice access based on behavior information.Control system design and implementation.Aiming at the problem of lagging subject authority update,a dynamic risk assessment method is proposed to complete the realization and verification of the algorithm.The main research contents are as follows:First of all,this paper proposes a dynamic access control scheme based on the UCON model,which extends the cycle of permission control to the full cycle of request access.According to the characteristics of the B5G network,an authorization scheme combining certificate authentication and behavior authentication is proposed to prevent malicious microservices from initiating illegal access and improve the overall security of the network.Second,this paper proposes a behavioral information-based dynamic risk assessment method for microservices during their access to resources.Based on the behavior information of the microservice,the algorithm combining the XGBoost algorithm and the FAHP algorithm is used to conduct a dynamic risk assessment on it,and the risk value obtained will be used as the basis for updating the microservice authority.Finally,this paper proposes a blockchain-based data cross-domain synchronization and authority control method,using the blockchain to record the cross-domain abnormal behavior of microservices in the B5G network,so as to realize the comprehensive perception of microservice security risks.At the same time,smart contracts are used to realize automatic authority control of microservices.In order to verify the feasibility of the scheme,this paper conducts experiments to verify its security and functional effectiveness.The results show that the scheme proposed in this paper takes into account both system efficiency and security.The accuracy of abnormal behavior detection is above 98%,and the delay increase is controlled within 100ms,which can meet the needs of B5G microservice access control. |
PDF Full Text Request