Design And Implementation Of Train Control Key Management System Using Blockchain Platform Based On Resource Virtualization

With the acceleration of urbanization,urban rail transit has become the preferred transportation mode for many citizens.The Communication-Based Train Control(CBTC)system is widely used in urban rail transit networks,which ensures the high efficiency and orderliness of trains.The application of wireless communication technology and computer network technology has effectively improved the operating efficiency of the CBTC system.However,the vulnerability of these technologies has directly caused the system to be more vulnerable to various information security attacks.Therefore,more and more attention has been paid to the information security of train control system.The identity authentication mechanism is an effective method to ensure the information security of the train control system.Some existing secure communication protocols in rail transportation lack an identity authentication mechanism and cannot guarantee the security of data during transmission.A few protocols with identity authentication mechanisms adopt a centralized key management method,which is sensitive to single-point failures.Blockchain is widely used in many fields due to its decentralization and anti-tampering.The distributed authentication technology based on the blockchain can effectively solve the problems caused by centralization.However,the existing general blockchain systems(such as Bitcoin,Ethereum,etc.)are not developed for key management of rail transit systems,and the transaction rate of these systems cannot meet the real-time requirements of key updates.In response to this problem,this thesis uses virtualization and cloud computing technology to build a blockchain platform based on resource virtualization,which realizes the virtual distribution of physical resources.It effectively improves the real-time nature of the platform at the expense of some safty.By using the designed blockchain platform based on resource virtualization,this thesis develops a distributed key management system and deploys it in the simulated train control system.The distributed key management system ensures the safety of data transmission for train control communications and improves the resistance to single-point attacks.The main research contents of the thesis are as follows:(1)Based on the existing general blockchain technology,a resource virtualization blockchain platform is designed to implement related operations such as user creation,transaction sending,and smart contract deployment on the blockchain.Then a resource virtualization plan for the platform is formulated,which realizes the rational allocation and flexible use of blockchain node virtualization resources.(2)The thesis designs the overall framework of the key management system for train control based on the blockchain and builds a distributed key management system.The implementation of the key management system includes writing and deploying smart contracts in Node.js based on the system architecture and functions,writing transaction scripts according to the key management operations such as registration,update,recovery,and revocation.Finally,a front-end interface is designed and implemented for key display and operation.(3)The distributed key management system needs to interface with the train control system.An interface software based on the communication link is realized to complete the perfect forwarding of data on the blockchain nodes.A secure communication protocol for the train control system is designed by using digital signature technology.At the same time of data forwarding,the protocol is used to implement message authentication to ensure data security.Finally,the performance test software is written to evaluate the real-time performance of the system communication,and the test results show that the system communication performance is not affected.(4)By using the key technology of Kubernetes cloud computing,this thesis realizes the resource virtualization of blockchain nodes.It expands the blockchain nodes,which implements the deployment and management of the nodes on the cloud platform.Through the relevant interface design,the interaction between the cloud nodes and the physical nodes of the blockchain is realized,which improves the flexibility of resource allocation under the resource virtualization blockchain platform and improves the scalability of the entire distributed key management system.