| The Internet of Vehicles is an important foundation for building intelligent transportation,which has great advantages in improving road safety and improving traffic efficiency.However,the traditional Internet of Vehicles has poor scalability and inflexible configuration,which has been unable to meet the development of new Internet of Vehicles.need.The proposal of the software defined Internet of Vehicles architecture can effectively solve the above problems.That is,the idea of Software Defined Network(SDN)is introduced into the vehicle networking,and it also brings programmability and scalability to the vehicle networking.The growing demand for connected car application services in the future.The introduction of SDN brings many benefits,but also makes network security issues in software defined Internet of Vehicles face more severe challenges.Its layered architecture and north/south interface expand the attack surface of traditional Internet of Vehicles,and centralized control features make controller security a top priority.In order to avoid risks in advance,timely discovery and patching of vulnerabilities can effectively mitigate the harm caused by attacks.At the same time,the system’s dynamic defense can further improve its protection against attacks.This paper conducts research on network security in the context of software defined Internet of Vehicles.The main contents include:(1)Aiming at the problem of software defined Internet of Vehicles vulnerability mining,a detailed analysis of the attack surface that the system may suffer,and designing a semi-automatic vulnerability discovery based on fuzzing,which proposes three different types of fuzzy test sample generation algorithms to meet the highest possible test coverage;(2)In response to the software defined Internet of Vehicles dynamic defense problem,a quadruple of security policies and a dynamic security policy generation method based on grammar spanning tree are proposed;(3)In order to evaluate the effect of dynamic defense,a mathematical model for system security evaluation was designed.This article builds a software defined Internet of Vehicles simulation environment based on Mininet-Wifi.The experimental results show that the vulnerability mining method can effectively reproduce the real vulnerabilities.At the same time,the comparison of the results of the system security assessment shows that the dynamic defense scheme can effectively improve the security level of the software defined Internet of Vehicles. |
