Research On Security And Trust Mechanisms For 5G Dedicated Public Network In Railway Internet Of Things

The services and applications of railway system are getting more diverse.Building the Internet of Things(IoT)network for railway system is an effective approach to develop the digital and intelligent railway.However,railway-dedicated networks are costly and resource-constrained,making it difficult to meet the needs of new IoT services.The concept of dedicated public network means to provide exclusive capability for railway IoT system,with the help of the 5G public network and resource isolation technology.As the railway-dedicated public network uses the open 5G public network to carry IoT services with high security requirements,the security and trustworthiness of the whole system must be guaranteed,including data security and node trustworthiness.This paper focus on the security and trust mechanisms for the railway-dedicated public network,aims at protecting data security and node trustworthiness.In this paper,we introduce several trendy technologies and theories such as Mobile Edge Computing(MEC),blockchain and zero-trust security model,and adopt the methods of the architecture design,optimization problem construction and solution,simulation and comparative analysis.The main innovative work of this paper is as follows.(1)Focusing on the data security in railway IoT applications,this paper proposes an algorithmic network-based secure data processing mechanism,designs a joint resource scheduling scheme,then improves the energy efficiency of railway IoT system and effectively protects the private data.Firstly,we design the architecture of railway-dedicated public network,in which multiple MEC servers join together to form an algorithmic network and provide on-site service to the IoT devices,so that the privacy data can be kept inside the field.Then with the consideration of energy limitation of IoT devices,the optimization problem is constructed with the objective of maximizing the energy efficiency.The optimization problem is solved by using optimization method firstly and accelerated by Deep Neural Network(DNN)-based method.Finally,the simulation results show that this scheme can achieve secure data processing with high energy efficiency.(2)Focusing on the node trustworthiness in railway IoT applications,a blockchain-based zero-trust security model is constructed,a reputation assessment mechanism for public MEC services is designed,and a two-way authentication process is proposed,which achieve effective supervision of public services and enhance the efficiency of authentication at the meantime.Firstly,with the help of blockchain and Merkle Tree,a distributed storage scheme for multi-dimensional identity information of all parties in the IoT network is proposed.It eliminates single-point failure,improves data update efficiency,saving transmission overhead,and improves the trustworthiness of the data used in the process of authentication.Secondly,we design a reputation assessment mechanism for MEC services,which achieves effective supervision and improves the MEC servers’ node trustworthiness.Thirdly,based on the zero-trust concept,a two-way authentication protocol is proposed to reduce the threat of potential horizontal and vertical attacks in the railway IoT system.Finally,simulation results illustrate the positive effect of this scheme in enhancing node trustworthiness.