Research On Strategy And Evaluation Method Of Integrated Defense Mechanism Of Internet Of Things

The progress of science and technology makes the Internet of things(Io T)more and more closely related to people's production and life,but at the same time,the Internet of things is full of vulnerabilities and attack methods against vulnerabilities emerge one after another.Existing research shows that the integrated defense mechanism based on moving target defense(MTD)and honeypot can effectively solve the hidden security risks in complex networks,provide better protection for the Internet of things and make the Internet of things "run with bacteria".However,the current research on the integrated defense mechanism based on moving target defense and honeypot still has some key problems,such as insufficient applicability,high defense cost,incomplete evaluation and so on.This paper makes further research on the existing integrated defense mechanism from the following three aspects:(1)The integrated defense mechanism strategy is studied and improved,and four integrated defense mechanism time strategies and one integrated defense mechanism method strategy are designed.Among them,the time strategy of integrated defense mechanism includes adaptive interval,fixed interval,random interval and hybrid interval to enhance the applicability of the integrated defense mechanism;An integrated defense mechanism method strategy is designed.The strategy uses decoy path-based optimization algorithm(DPOA)to optimize the Internet of things.By maximizing the number of decoy paths of real physical networking nodes,the suboptimal network deploying the integrated defense mechanism is calculated to reduce the defense cost.(2)The evaluation method of integrated defense mechanism is studied and improved.An evaluation framework of Internet of things integrated defense mechanism based on hierarchical attack representation model(HARM)is designed.The framework combines HARM with evaluation indicators to evaluate the integrated defense mechanism;At the same time,based on the existing indicators,two new evaluation indicators are proposed: attack transfer ratio(ATR)and message delivery ratio(MDR).A total of five evaluation indicators are used to comprehensively evaluate the integrated defense mechanism from more angles.(3)In order to verify the effectiveness of the research on the strategy and evaluation method of integrated defense mechanism,an integrated defense mechanism simulation system is designed.The simulation system is composed of Io T generation module,hybrid topology set generation module,layered attack representation model generation module,security analysis module and security improvement module.Taking an Internet of things network as the experimental scenario,the Internet of things network with or without integrated defense mechanism is simulated.The simulation results show that compared with the Internet of things without integrated defense mechanism,the Internet of things with integrated defense mechanism has higher mean time to security failure and message delivery rate;Under the four integrated defense mechanism time strategies,DPOA is used to optimize the Internet of things.Compared with the traditional methods,the defense cost is greatly reduced,the attack transfer ratio is significantly increased,and considerable number of mean time to security failure,the number of attack paths to the decoy target and message delivery ratio are obtained.In addition,The DPOA based scheme achieves a better key balance between defense effect and defense cost.