基于进程通信语义的互联安全控制安全分析和优化

卢波; 陆月明

doi:10.11959/j.issn.2096-8930.2021029

您当前的位置：

首页 >

文章列表页 >

基于进程通信语义的互联安全控制安全分析和优化

专题：天地一体化信息网络安全防护技术 | 更新时间：2024-06-03

- 基于进程通信语义的互联安全控制安全分析和优化
- Optimization and Security Analysis of Interconnected Security Control Based on Semantic of Process Communication
- 天地一体化信息网络 2021年2卷第3期页码：35-47
- 作者机构：
- 作者简介：
  
  [ "卢波（1988-），男，北京邮电大学博士生，主要研究方向为协议安全分析、安全关键系统设计" ]
  [ "陆月明（1969-），男，北京邮电大学教授、博士生导师，可信分布式计算与服务教育部重点实验室学术委员会委员与学术带头人，主要研究方向为互联网安全等" ]
- 基金信息：
  
  国家重点研发计划资助;National Key R＆D Program of China(2016YFB0800302)
- DOI：10.11959/j.issn.2096-8930.2021029
  中图分类号： TN918.91
- 网络出版日期：2021-09，
  
  纸质出版日期：2021-09-20
- 稿件说明：
移动端阅览
卢波, 陆月明. 基于进程通信语义的互联安全控制安全分析和优化[J]. 天地一体化信息网络, 2021,2(3):35-47.

Bo LU, Yueming LU. Optimization and Security Analysis of Interconnected Security Control Based on Semantic of Process Communication[J]. Space-integrated-ground information networks, 2021, 2(3): 35-47.
卢波, 陆月明. 基于进程通信语义的互联安全控制安全分析和优化[J]. 天地一体化信息网络, 2021,2(3):35-47. DOI： 10.11959/j.issn.2096-8930.2021029.

Bo LU, Yueming LU. Optimization and Security Analysis of Interconnected Security Control Based on Semantic of Process Communication[J]. Space-integrated-ground information networks, 2021, 2(3): 35-47. DOI： 10.11959/j.issn.2096-8930.2021029.

摘要

面对天地一体化信息网络多域安全控制需求，针对单进程正则匹配的方式制约了互联安全网关的性能问题，提出基于进程通信语义安全分析的互联安全控制高性能优化方法。该方法采用以进程概念为中心的并行程序设计语言描述主从进程的交互模型，通过赋予状态转移系统语义，实现主从进程的组合语义精确的表达。通过形式化语义分析，该方法具有运行无死锁、饥饿，且等价于原有正则匹配的语义安全性。实验结果表明，该方法能够充分发挥多核硬件优势，使用进程绑定CPU方式，减少操作系统调度器的上下文切换开销，在复杂正则表达式情形下，比单核运行提高一个数量级。

Abstract

Facing the demand of multi-domain security control in the integrated network of air and ground

to solve the problem that singleprocess regular matching restricts the performance of interconnected security gateway

the method of high-performance optimization of interconnected security control based on semantic security analysis of process communication was proposed.The interaction model of master-slave processes was described in a parallel programming language in the method.The state transition system semantics were given to accurately express the combined semantics of the master-slave processes.The security of master-slave processes in combinatorial semantics was analyzed

which ensured that the parallel running of processes had no deadlock and starvation

and was equivalent to the original regular matching.Experimental results showed that the proposed method could give full play to the advantages of multi-core hardware and reduced the context switching overhead of the scheduler.In the case of complex regular expressions

the method was an order of magnitude better than single-core running.

关键词

Keywords

references

LU B , CAO R H , LU Y M , et al . Design and formal analysis of an authentication protocol,eWMDP on wearable devices [J ] . IEEE Access , 2019 , 7 : 97771 - 97783 .

ZHANG L H , LU B D , ZHAO T , et al . A novel decentralized blockchain networks model with high concurrency (blockchain networks model with high concurrency) [C ] // Proceedings of 2019 IEEE 14th International Conference on Intelligent Systems and Knowledge Engineering (ISKE) . Piscataway:IEEE Press , 2019 : 800 - 804 .

GORRIERI R , VERSARI C . Introduction to concurrency theory [M ] . Cham : Springer International Publishing , 2015 .

POLYVYANYY A , SOLTI A , WEIDLICH M , et al . Monotone precision and recall measures for comparing executions and specifications of dynamic systems [J ] . ACM Transactions on Software Engineering and Methodology , 2020 , 29 ( 3 ): 1 - 41 .

DIERTENS B . A process algebra software engineering environment [EB ] .

ZHANG F , ZHAO Y W , MA D F , et al . Formal verification of behavioral AADL models by stateful timed CSP [J ] . IEEE Access , 2017 , 5 : 27421 - 27438 .

MKAOUAR H , ZALILA B , HUGUES J , et al . A formal approach to AADL model-based software engineering [J ] . International Journal on Software Tools for Technology Transfer , 2020 , 22 ( 2 ): 219 - 247 .

KIM R , KWON H T , CHI S Y , et al . A coordination model for agent behaviors using hierarchical finite state machine with inter-level concurrency [C ] // Proceedings of 2016 International Conference on Information and Communication Technology Convergence (ICTC) . Piscataway:IEEE Press , 2016 : 359 - 364 .

PRIETO M , SUGEZKY L , GONZÁLEZ N ,, et al . Evaluation of the uModel factory software used for the modeling of embedded systems with concurrent states [C ] // Proceedings of 2017 IEEE 8th Latin American Symposium on Circuits ＆ Systems (LASCAS) . Piscataway:IEEE Press , 2017 : 1 - 4 .

PRZIGODA N , HILKEN C , WILLE R , et al . Checking concurrent behavior in UML/OCL models [C ] // Proceedings of 2015 ACM/IEEE 18th International Conference on Model Driven Engineering Languages and Systems (MODELS) . Piscataway:IEEE Press , 2015 : 176 - 185 .

SHIROLE M , KUMAR R . Test scenario selection for concurrency testing from UML models [C ] // Proceedings of 2015 Eighth International Conference on Contemporary Computing (IC3) . Piscataway:IEEE Press , 2015 : 531 - 536 .

GADEA C , IONESCU B , IONESCU D . Modeling and simulation of an operational transformation algorithm using finite state machines [C ] // Proceedings of 2018 IEEE 12th International Symposium on Applied Computational Intelligence and Informatics (SACI) . Piscataway:IEEE Press , 2018 : 119 - 124 .

PAZZI L , PRADELLI M . Modularity and part-whole compositionality for computing the state semantics of statecharts [C ] // Proceedings of 2012 12th International Conference on Application of Concurrency to System Design . Piscataway:IEEE Press , 2012 : 193 - 203 .

RAVICHANDRAN K , PANDE S . F2C2-STM:flux-based feedback-driven concurrency control for STMs [C ] // Proceedings of 2014 IEEE 28th International Parallel and Distributed Processing Symposium . Piscataway:IEEE Press , 2014 : 927 - 938 .

MEJIA-RICART L , OLMSTED A . Avoiding unnecessary deaths:drag-Back,a deadlock avoidance model [C ] // Proceedings of 2017 12th International Conference for Internet Technology and Secured Transactions (ICITST) . Piscataway:IEEE Press , 2017 : 472 - 474 .

BAKURA S A , MOHAMMED A . Lock-free hybrid concurrency control strategy for mobile environment [C ] // Proceedings of 2014 IEEE 6th International Conference on Adaptive Science ＆Technology (ICAST) . Piscataway:IEEE Press , 2014 : 1 - 5 .

RATHNAYAKE A , THIELECKE H . Regular expression matching and operational semantics [J ] . Electronic Proceedings in Theoretical Computer Science , 2011 , 62 : 31 - 45 .

ZENG M , LIU P , MIAO H K . The design and implementation of a modeling tool for regular expressions [C ] // Proceedings of 2014 IIAI 3rd International Conference on Advanced Applied Informatics . Piscataway:IEEE Press , 2014 : 726 - 731 .

POURALI P . A user-centric approach to improve the quality of UML-like modeling tools and reduce the efforts of modeling [D ] . Waterloo:University of Waterloo , 2020 .

浏览量

1040

下载量

CSCD

文章被引用时，请邮件提醒。

提交

工具集

关联资源

暂无数据