A secure access control method for lowpan nodes based on neighbor discovery

Abstract

The invention discloses a LoWPAN node security access control method based on neighbor discovery to solve the communication security problem of the 6LoPWAN network link. Security authentication when nodes join, to detect whether messages in the network have been tampered with. Through the secure access control of new nodes, the authentication address IP list is jointly maintained within the network range, which can prevent malicious nodes from attacking and masquerading within the entire network. This solution is proposed based on the optimization of the NDP protocol of the 6LoWPAN network. It does not need to redefine a new protocol type. It has higher scalability and is easier to promote. It is especially suitable for sensor networks with limited resource and energy.

Description

technical field [0001] The invention relates to a control method for secure access of 6LoWPAN nodes, belonging to the technical field of wireless sensor network security. Background technique [0002] The wireless sensor network is a wireless network composed of a large number of micro-nodes integrated with sensors, data processing units and communication modules randomly distributed on demand in a self-organizing manner. It has the advantages of low cost, low energy consumption, and high flexibility. It can be applied to It has important research value and application prospect in the fields of national defense and military, environmental monitoring, traffic management and so on. As a next-generation network protocol, IPv6 has the advantages of rich address resources, automatic address configuration, good mobility and scalability, and can meet the needs of wireless sensor networks in terms of address, security, mobility, and integration with existing networks. [0003] In 2...

AI Technical Summary

Problems solved by technology

[0003] In 2004, the IETF established the 6LoWPAN working group to study the application scheme of IPv6 on the IEEE 802.15.4 network. At present, corresponding solutions have been proposed for the adaptation layer technology, header compression technology, and routing technology, but there is no provision for the security mechanism of the 6LoWPAN network. A set of effective methods, one of the security issues that must be paid attention to is the abuse of NDP (Neighbor Discovery Protocol), duplicate address detection and router announcement messages, etc.

However, this solution is not suitable for LoWPAN networks. Routers often need to provide certificate path chains, which requires the host to spend a lot of resources and energy to calculate the validity of the path. At the same time, the SEND protocol needs to use CGA for all ND messages ( Encryption generated address) and RSA public key system, which requires longer processing time and calculation process, is not suitable for sensor nodes with limited resource energy

Images