Research On Civil Aviation Cyber Security Threat Intelligence Sharing Mechanism Based On Blockchain

With the continuous development of network science and technology,network attacks show a trend of generalization and diversification.New network threats represented by advanced sustainable threats have caused great harm to civil aviation network security.Faced with these new threats,traditional cyber defense systems cannot effectively defend against them.In order to effectively improve the current attack and defense situation,it is essential to share network security threat intelligence to coordinate the protection strategies of relevant civil aviation units and establish a healthy and efficient civil aviation threat intelligence ecosystem.Existing network threat intelligence sharing schemes mostly adopt centralized design mode,which has shortcomings in data security,platform reliability and record traceability.Moreover,most of them are targeted at characteristic intelligence sharing scenarios,so they cannot be directly applied to the field of civil aviation network security threat intelligence sharing.Therefore,this thesis proposes a civil aviation network security threat intelligence sharing scheme by combining the characteristics of blockchain in the field of data sharing,such as point-to-point transmission,distributed storage,traceability,non-tampering,account anonymity,transaction transparency and data privacy encryption methods.The main research contents are as follows:First,According to the data access security problems in the process of intelligence sharing,using block chain decentralization,traceability,and tamper-resistant features,combined with the attribute based encryption was proposed based on the threat of chain blocks and attribute based encryption information sharing scheme,solved as a result of the lack of trust problems caused by the centralized model,And the blockchain smart contract as the encryption executor to further solve the trust problem.The intelligent contract can run automatically and ciphertext policy attribute based encryption algorithm can encrypt multiple people at one time to achieve the effect of decentralized intelligence sharing data access control.Finally,through security and performance analysis,the superiority of the proposed scheme in network security threat intelligence sharing is proved.Second,In view of the privacy protection requirements of practical intelligence sharing in civil aviation while ensuring data security,the El Gamal proxy re-encryption method is further introduced to improve the intelligence sharing scheme.By setting the role of blockchain proxy re-encryption node and improving it in combination with smart contract,centralized data proxy re-encryption is realized in blockchain scenarios and the privacy protection intensity of data sharing process is improved.Security analysis and performance test show that this scheme can realize privacy protection with low cost.Build the civil aviation network security threat intelligence sharing alliance chain based on the characteristics of the civil aviation industry,build the experimental environment on the Ethereum platform,design and develop smart contracts using Solidity language,simulate the actual operation process and calculate the cost through the blockchain test network.Experimental results show that the proposed scheme is feasible and can realize privacy protection and data security.