CN113485158A - Dynamic simulation drilling method based on Internet of vehicles information security - Google Patents

Dynamic simulation drilling method based on Internet of vehicles information security Download PDF

Info

Publication number
CN113485158A
CN113485158A CN202110813472.9A CN202110813472A CN113485158A CN 113485158 A CN113485158 A CN 113485158A CN 202110813472 A CN202110813472 A CN 202110813472A CN 113485158 A CN113485158 A CN 113485158A
Authority
CN
China
Prior art keywords
internet
vehicles
attack
scene
defense
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202110813472.9A
Other languages
Chinese (zh)
Inventor
冀浩杰
于海洋
殷如娟
王春阳
张晨玺
任毅龙
孙文举
郭斌
尚随全
付兴坤
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Taian Beihang Science Park Information Technology Co ltd
Original Assignee
Taian Beihang Science Park Information Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Taian Beihang Science Park Information Technology Co ltd filed Critical Taian Beihang Science Park Information Technology Co ltd
Priority to CN202110813472.9A priority Critical patent/CN113485158A/en
Publication of CN113485158A publication Critical patent/CN113485158A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B17/00Systems involving the use of models or simulators of said systems
    • G05B17/02Systems involving the use of models or simulators of said systems electric

Landscapes

  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Engineering & Computer Science (AREA)
  • Automation & Control Theory (AREA)
  • Computer And Data Communications (AREA)

Abstract

The invention discloses a dynamic simulation drilling method for information security of an internet of vehicles, which solves the problems of high cost of attack and defense experiments, long technical development period and difficult system security evaluation faced by the safety of the internet of vehicles through a dynamic simulation drilling system for the information security of the internet of vehicles. By researching the problems of virtual resource management of the Internet of vehicles, safety test evaluation of the Internet of vehicles and the like, an information safety application service platform oriented to intelligent Internet of vehicles and multi-service forms is established.

Description

Dynamic simulation drilling method based on Internet of vehicles information security
Technical Field
The invention relates to the technical field of automobile information safety, is suitable for automobile information safety comprehensive drilling simulation, and particularly relates to a dynamic simulation drilling method based on automobile networking information safety.
Background
In recent years, with the continuous increase of the automobile holding capacity, the road bearing capacity has reached saturation in many cities, and the problems of traffic safety, travel efficiency, environmental protection and the like are increasingly highlighted. The Internet of vehicles is used as an important field of informatization and industrialization deep fusion, and has important significance for promoting the fusion and the upgrade of automobile, traffic and information communication industries and the remodeling of related industry ecology and value chain systems. With the continuous promotion of the intellectualization and networking process of the Internet of vehicles, the security incident of the Internet of vehicles appears, the user declares that the property security is threatened, and the security of the Internet of vehicles becomes an important factor related to whether the Internet of vehicles can be rapidly developed. Currently, in the key period of development of the internet of vehicles, the strengthening of the internet of vehicles security guarantee by combining the overall situation of international network security becomes a critical affair. At present, the communication protocol types of vehicles, road sides and infrastructures are increased, the polymorphic services are increased to lead to the continuous increase of communication interfaces, the channels of system interconnection are increased, the attack points of the vehicle networking system are increased, the vehicle attack is established on the basis of a large number of real vehicle tests, and the cost of the vehicle system attack is higher.
Disclosure of Invention
Aiming at the defects in the prior art, the invention aims to provide a dynamic simulation drilling method for the information security of the Internet of vehicles, which solves the problems of high cost of attack and defense experiments, long technical development period and difficult system security evaluation faced by the safety of the Internet of vehicles through a dynamic simulation drilling system for the information security of the vehicles. By researching the problems of virtual resource management of the Internet of vehicles, safety test evaluation of the Internet of vehicles and the like, an information safety application service platform oriented to intelligent Internet of vehicles and multi-service forms is established.
In order to achieve the purpose, the invention provides the following technical scheme: a dynamic simulation drilling method based on Internet of vehicles information security comprises the following steps:
step 1, dividing functional modules of a vehicle networking system, designing sub-modules in an associated manner, carrying out simulation modeling on key components, simulating general characteristics of various targets in the aspects of calculation, communication and safety protection through system special components, building a typical vehicle simulation system, and constructing a vehicle-mounted terminal and vehicle-mounted bus key infrastructure digital model;
step 2, for the constructed system components, classifying and optimizing resources to construct a classified view, supporting multi-dimensional fast search when searching, and dynamically monitoring the running states of the components such as a virtual machine and real equipment, the resource utilization conditions and the component working states to realize virtualization sharing and dynamic deployment under different fault-tolerant mechanisms;
and 3, establishing typical information security attack and defense capacity for key infrastructure resources of the internet of vehicles shooting range for attack and defense requirements of the internet of vehicles shooting range, establishing an attack and defense model between different entity networks of 'human-vehicle-road-cloud', extracting scene characteristics, performing topology arrangement on the scene, establishing a typical attack and defense application scene of the internet of vehicles shooting range through scheduling of a basic engine, and establishing different attack and defense models and attack and defense application scenes of the internet of vehicles shooting range according to the internet of vehicles security attack model and the security protection strategy.
As a further improvement of the present invention, the model component constructed in step 1 includes a scheduling management layer, a basic engine subsystem and a safety basic resource layer, wherein the scheduling management layer interfaces the target court basic engine subsystem and the resource management and control subsystem to provide a functional interface for upper scene construction, virtual-real combination networking and resource application release, the basic engine subsystem can schedule scene virtualization construction and scenario creation tasks to work cooperatively, and the safety basic resource layer performs scene topology-based arrangement on physical devices, virtual devices and safety devices and then provides multiple target court components for an upper business system to form multiple test simulation modules.
As a further improvement of the present invention, the manner of extracting the scene features in step 3 includes typical scene analysis design, key basic component connection, and scene feature selection and extraction.
As a further improvement of the present invention, the specific steps of virtualization sharing and dynamic deployment in step 2 are as follows:
step 21, performing application requirement analysis and attack and defense drilling of the Internet of vehicles;
step 22, modeling key infrastructure of the Internet of vehicles;
step 23, performing system modular design;
24, performing the correlation design of the vehicle networking system sub-modules;
step 25, modeling the key component simulation;
step 26, dividing functional modules of the Internet of vehicles system;
step 27, optimizing the resource classification, and classifying the resources into storage resources, computing resources and network resources;
and step 28, managing and deploying the resources.
The invention has the beneficial effects that:
(1) the invention provides a vehicle networking key infrastructure model construction based on system modular design, breaks through a vehicle networking key basic component construction technology aiming at different application functions and information safety requirements of a vehicle networking, and provides effective support for different attack and defense scenes of the vehicle networking.
(2) The invention provides the vehicle networking resource virtualization sharing and dynamic deployment based on different fault-tolerant mechanisms, aims at the problem of vehicle networking resource classification optimization, breaks through the existing vehicle networking physical resource deployment method, and constructs a scalable vehicle networking resource classification optimization model.
(3) The invention provides an attack and defense model and a typical application scene construction facing different attack and defense requirements of an Internet of vehicles, breaks through the existing Internet of vehicles attack and defense capability and scene construction technology aiming at different attack characteristics and protection strategy requirements of the Internet of vehicles in a typical application environment, establishes the attack and defense model based on a characteristic library under different application requirements of the Internet of vehicles, designs the typical application scene of a Internet of vehicles shooting range in different application environments, and meets the development and application of different service platforms.
Drawings
FIG. 1 is a data flow diagram of a dynamic simulation drill based on Internet of vehicles information security of the present invention;
FIG. 2 is a flow chart of a dynamic simulation drill based on Internet of vehicles information security according to the present invention;
FIG. 3 is a diagram of the virtual sharing and dynamic deployment of resources in the Internet of vehicles based on different fault tolerance mechanisms of the dynamic simulation drill in the Internet of vehicles according to the present invention;
FIG. 4 is a construction diagram of an attack and defense model and a typical application scenario of different attack and defense requirements based on the dynamic simulation drilling of the Internet of vehicles.
Detailed Description
The invention will be further described in detail with reference to the following examples, which are given in the accompanying drawings.
The invention aims to provide a dynamic simulation drill for information security of Internet of vehicles. Considering the current situations of high attack and defense experiment cost, long technical development period and difficult system safety evaluation faced by the safety of the Internet of vehicles, the simulation drilling system is subjected to modularized design simulation, different attack and defense scenes are constructed, resources are classified, stored, calculated, scheduled and dynamically deployed, and virtualization sharing and dynamic deployment under different fault-tolerant mechanisms are realized. And finally, arranging a specific scene topology, finishing typical attack and defense scene construction by utilizing basic engine scheduling, and meeting the development and application of different service platforms by combining different attack and defense models. A specific dataflow diagram is shown in fig. 1.
In the patent of the invention, the specific implementation steps are as follows:
step 1: in order to clarify different requirements of the car networking on application functions, the function modules of the car networking system are divided, sub-modules are designed in a correlated mode, key components are modeled in a simulation mode, general characteristics of various targets in the aspects of calculation, communication, safety protection and the like are simulated through special components of the system, a typical vehicle target simulation system is built, and key infrastructure digital models such as a vehicle-mounted terminal and a vehicle-mounted bus are built. The scheduling management layer is used for butting the shooting range basic engine subsystem and the resource management and control subsystem, a functional interface is provided for upper scene construction, virtual-real combined networking and resource application release, and the basic engine subsystem can be used for scheduling scene virtualization construction and scenario creation task cooperative work. The safety basic resource layer arranges physical equipment, virtual equipment and safety equipment based on scene topology and then provides a multi-element target range component for an upper-layer service system to form a plurality of test simulation modules. The specific flow chart is shown in fig. 2.
Step 2: for the constructed system component, the method optimizes the resource classification to construct a classification view, expands according to the characteristic property, supports multi-dimensional quick search and facilitates the search of a user. The general characteristics of various targets in the aspects of calculation, communication, safety protection and the like are simulated through the system special component, resources are scheduled according to requirements, a typical vehicle simulation system is built, and key infrastructure digital models such as a vehicle-mounted terminal and a vehicle-mounted bus are built. And meanwhile, the running state, the resource utilization condition and the working state of components such as a virtual machine, real equipment and the like are dynamically monitored, the load of resources is constantly distributed, the automatic deployment of the dynamic resources is realized, and the virtualization sharing and the dynamic deployment under different fault-tolerant mechanisms are realized. Specific virtualization sharing and dynamic deployment are shown in fig. 3.
And step 3: the method is used for establishing a typical information security attack and defense capability for key infrastructure resources of the Internet of vehicles according to the attack and defense requirements of the Internet of vehicles, establishing an attack and defense model between different entity networks such as 'human-vehicle-road-cloud' and the like, and establishing different attack and defense models of the Internet of vehicles according to a security attack model and a security protection strategy of the Internet of vehicles. The data safety and communication safety oriented attack and defense technology extracts scene features, comprises typical scene analysis design, key basic component connection, scene feature selection and extraction, performs topology arrangement on the scene, and constructs a typical attack and defense application scene of the Internet of vehicles through the scheduling of a basic engine. And dynamic simulation of various environments is realized through different constructed attack and defense models and typical application scene models. The construction of the attack and defense model and the typical application scenario of different specific attack and defense requirements is shown in fig. 4.
The specific implementation steps of the invention are described in detail in the steps. The modularized system is reconstructed according to analysis of application requirements, different attack and defense scenes are built by automatic dynamic deployment, the application scenes save testing cost, and meanwhile, technical support is provided for intelligent car networking information safety simulation drilling.
The above description is only a preferred embodiment of the present invention, and the protection scope of the present invention is not limited to the above embodiments, and all technical solutions belonging to the idea of the present invention belong to the protection scope of the present invention. It should be noted that modifications and embellishments within the scope of the invention may occur to those skilled in the art without departing from the principle of the invention, and are considered to be within the scope of the invention.

Claims (4)

1. A dynamic simulation drilling method based on Internet of vehicles information security is characterized in that: the method comprises the following steps:
step 1, dividing functional modules of a vehicle networking system, designing sub-modules in an associated manner, carrying out simulation modeling on key components, simulating general characteristics of various targets in the aspects of calculation, communication and safety protection through system special components, building a typical vehicle simulation system, and constructing a vehicle-mounted terminal and vehicle-mounted bus key infrastructure digital model;
step 2, for the constructed system components, classifying and optimizing resources to construct a classified view, supporting multi-dimensional fast search when searching, and dynamically monitoring the running states of the components such as a virtual machine and real equipment, the resource utilization conditions and the component working states to realize virtualization sharing and dynamic deployment under different fault-tolerant mechanisms;
and 3, establishing typical information security attack and defense capacity for key infrastructure resources of the internet of vehicles shooting range for attack and defense requirements of the internet of vehicles shooting range, establishing an attack and defense model between different entity networks of 'human-vehicle-road-cloud', extracting scene characteristics, performing topology arrangement on the scene, establishing a typical attack and defense application scene of the internet of vehicles shooting range through scheduling of a basic engine, and establishing different attack and defense models and attack and defense application scenes of the internet of vehicles shooting range according to the internet of vehicles security attack model and the security protection strategy.
2. The vehicle networking information security-based dynamic simulation drilling method according to claim 1, wherein: the model component constructed in the step 1 comprises a scheduling management layer, a basic engine subsystem and a safety basic resource layer, wherein the scheduling management layer enables the shooting range basic engine subsystem and the resource management and control subsystem to be in butt joint, functional interfaces are provided for upper-layer scene construction, virtual-real combination networking and resource application release, the basic engine subsystem can schedule scene virtualization construction and scenario creation tasks to work in a coordinated mode, and the safety basic resource layer arranges physical equipment, virtual equipment and safety equipment based on scene topology and then provides multiple shooting range components for an upper-layer service system to form multiple testing simulation modules.
3. The vehicle networking information security-based dynamic simulation drilling method according to claim 2, wherein: the method for extracting the scene features in the step 3 comprises typical scene analysis design, key basic component connection and scene feature selection and extraction.
4. The vehicle networking information security-based dynamic simulation drilling method according to claim 3, wherein:
the specific steps of the virtualization sharing and the dynamic deployment in the step 2 are as follows:
step 21, performing application requirement analysis and attack and defense drilling of the Internet of vehicles;
step 22, modeling key infrastructure of the Internet of vehicles;
step 23, performing system modular design;
24, performing the correlation design of the vehicle networking system sub-modules;
step 25, modeling the key component simulation;
step 26, dividing functional modules of the Internet of vehicles system;
step 27, optimizing the resource classification, and classifying the resources into storage resources, computing resources and network resources;
and step 28, managing and deploying the resources.
CN202110813472.9A 2021-07-19 2021-07-19 Dynamic simulation drilling method based on Internet of vehicles information security Pending CN113485158A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110813472.9A CN113485158A (en) 2021-07-19 2021-07-19 Dynamic simulation drilling method based on Internet of vehicles information security

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110813472.9A CN113485158A (en) 2021-07-19 2021-07-19 Dynamic simulation drilling method based on Internet of vehicles information security

Publications (1)

Publication Number Publication Date
CN113485158A true CN113485158A (en) 2021-10-08

Family

ID=77941332

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110813472.9A Pending CN113485158A (en) 2021-07-19 2021-07-19 Dynamic simulation drilling method based on Internet of vehicles information security

Country Status (1)

Country Link
CN (1) CN113485158A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113859250A (en) * 2021-10-14 2021-12-31 泰安北航科技园信息科技有限公司 Intelligent automobile information security threat detection system based on driving behavior abnormity identification

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110475227A (en) * 2019-07-26 2019-11-19 上海帆一尚行科技有限公司 The method, apparatus of car networking protecting information safety, system, electronic equipment
CN111327463A (en) * 2020-02-12 2020-06-23 博智安全科技股份有限公司 Industrial Internet safety practical training platform based on virtualization

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110475227A (en) * 2019-07-26 2019-11-19 上海帆一尚行科技有限公司 The method, apparatus of car networking protecting information safety, system, electronic equipment
CN111327463A (en) * 2020-02-12 2020-06-23 博智安全科技股份有限公司 Industrial Internet safety practical training platform based on virtualization

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
宋昊辰;杨林;徐华伟;杨?婕;胡坚耀;陈超英;: "智能网联汽车信息安全综述", 信息安全与通信保密, no. 07, pages 106 - 114 *

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113859250A (en) * 2021-10-14 2021-12-31 泰安北航科技园信息科技有限公司 Intelligent automobile information security threat detection system based on driving behavior abnormity identification

Similar Documents

Publication Publication Date Title
CN110300018B (en) Object-oriented hierarchical modeling method for power grid information physical system
US20070021954A1 (en) Tactical cognitive-based simulation methods and systems for communication failure management in ad-hoc wireless networks
CN113037620A (en) Intelligent edge computing gateway
CN110008005B (en) Cloud platform-based power grid communication resource virtual machine migration system and method
CN104601383A (en) Segmented power telecommunication network analysis method
CN113485158A (en) Dynamic simulation drilling method based on Internet of vehicles information security
CN111083671A (en) Deterministic network architecture-based vehicle road cloud collaborative networking architecture and method
CN114356757A (en) Test condition configuration method based on limited automatic driving simulation scene
CN114614989A (en) Feasibility verification method and device of network service based on digital twin technology
Velasco et al. Flexible fog computing and telecom architecture for 5G networks
CN117851257A (en) Distributed software testing environment construction system based on cloud computing
CN115118647A (en) System and method for perceiving and announcing computing power information in computing power network
CN112383435B (en) Fault processing method and device
CN112486666A (en) Model-driven reference architecture method and platform
CN105338092A (en) Establishing method of fire fighting truck internet-of-vehicle data platform
Higuchi et al. Offloading tasks to vehicular virtual edge servers
Hause et al. MBSE driven IoT for smarter cities
CN116170509A (en) Calculation power scheduling method, calculation power scheduling device and storage medium
CN112866009B (en) Virtual network fault diagnosis method and device for comprehensive service station
CN115361708A (en) 5G-based electricity consumption data detection technology
Sun et al. Adaptive rule engine for anomaly detection in 5g mobile edge computing
Zhang et al. Research on cyber-physical systems based on software definition
CN113238928B (en) End cloud collaborative evaluation system for audio and video big data task
CN113489942A (en) Video monitoring system based on edge calculation
CN111078302B (en) Automatic deployment method and terminal of distribution network monitoring platform system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WD01 Invention patent application deemed withdrawn after publication
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20211008