Cross-domain logic strong isolation and secure access control method and device in Internet of Things scene

Abstract

The invention discloses a cross-domain logic strong isolation and secure access control method and device in an Internet of Things scene, and the method comprises the steps: enabling a certain Internet of Things gateway to broadcast an identity authentication request to other Internet of Things gateways in a domain after receiving the identity authentication request; after receiving the identity authentication request, starting to independently verify whether the identity authentication request is legal or not; after a certain Internet of Things gateway obtains an identity authentication result, starting a distributed consensus mechanism; after the Internet of Things gateway in the domain achieves consensus on authentication results through a distributed consensus mechanism, and then writing the identity authentication results into blocks and stored, and allowing the blocks to form a block chain. Therefore, the Internet of Things gateway in the domain carries out access control througha distributed consensus mechanism, cross-domain logic strong isolation is realized, the security of an Internet of Things system is effectively improved, and an identity authentication result is stored in a block in a block chain and has the characteristics of being public, transparent and traceable.

Description

technical field [0001] The present invention relates to the technical field of cyberspace security, in particular to a method and device for cross-domain logic strong isolation and secure access control in the Internet of Things scene. Background technique [0002] Access control technology is an important research content in the field of cyberspace security. This technology aims to prevent unauthorized access to any resources and ensure that computer systems are used within the legal scope. According to the definition of the International Telecommunication Union, the Internet of Things mainly solves the interconnection between items and items, items and people, and people. In the Internet of Things (Internet of Things) scenario, IoT nodes usually have limited computing power, and it is difficult to complete complex computing operations and access control, so the risk of being hijacked is high; the number of IoT nodes is large, and if IoT nodes are hijacked, Hackers can tak...

AI Technical Summary

Problems solved by technology

This leads to a problem: if the authentication node is hijacked, all IoT devices and user data in the domain are at risk; although in some solutions multiple authentication nodes can be deployed in the domain, the Usually mutual backup, this is only for improving system reliability, as long as one of the multiple authentication nodes is hijacked, it can greatly threaten the security of identity authentication, and cannot effectively improve system security

In addition, although the IoT gateway has more computing resources than the IoT nodes, it still cannot support the complex identity authentication process. It is unrealistic to always assume that the authentication nodes are safe or credible, so the above There is still room for improvement in the security of the access control scheme using a single authentication node

Images