Design And Implementation Of MiANet's Anti-intrusion Algorithm

Mobile Ad-hoc networks(MANETs)have great potential applications in military missions or emergency rescue due to their no-infrastructure,self-organizing and multi hop capability characteristics.Obviously,it is important to implement a low-cost and efficient mechanism of anti-invasion,anti-eavesdropping and anti-attack in MANETs,especially for military scenarios.The purpose of intruding or attacking a MANET is usually different from that of wired Internet networks whose security mechanism has been widely explored and implemented.For MANETs,moving target defense(MTD)is a suitable mechanism to enhance the network security,whose basic idea is to continuously and randomly change the system parameters or configuration to create inaccessibility for intruders and attackers.In this paper,a two-layer IP hopping-based MTD approach is proposed,in which device IP addresses or virtual IP addresses change or hop according to the network security status and requirements.The proposed MTD scheme based on the two-layer IP hopping has two major advantages in terms of network security.First,the device IP address of each device is not exposed to the wireless physical channel at all.Second,the two-layer IP hops with individual interval and rules to obtain enhanced security of MANET while maintaining relatively low computational load and communication cost for network control and synchronization.The proposed MTD scheme is implemented in our developed MANET terminals,providing three level of network security: anti-intrusion in normal environment,intrusion detection in offensive environment and antieavesdropping in a hostile environment by combining the data encryption technology.The main work of the thesis is as follows:Analysis of the security problems existing in MiANet V3.0 is proposed,and an MTD method based on two layers of IP bounce is proposed,in which the device IP address or virtual IP address is beating or jumping on time according to the network security status and requirements,using VPN technology for packet transmission of virtual IP,and using AES symmetric encryption technology for seed distribution.Experiments have shown that because an attacker takes more than seven times longer to obtain IP by cracking packets than the effective time of IP,it is difficult for an attacker to send packages masquerading as legitimate nodes during the effective time of IP hopping.Perfect and enhance the previous research and development of MiANet V2.0,not only the mi ANet V2.0 function has been perfected,but also through X.264 and Speed technology to solve the problem of audio and video can not be synchronized,and the data acquisition module,streaming data processing module,page display three modules of the implementation of the system analysis and elaboration.Analysis of MiANet V2.5 battlefield situation,through the introduction of Baidu map to achieve the MiANet situational awareness system,through mapping the deployment of enemy forces to achieve the first layer of data acquisition,through the enemy and our trajectory analysis to achieve the second layer of situational understanding,through path planning and navigation to achieve the third level of situation prediction.