CN117240770B - Satellite network routing method and device and electronic equipment - Google Patents

Satellite network routing method and device and electronic equipment Download PDF

Info

Publication number
CN117240770B
CN117240770B CN202311331639.3A CN202311331639A CN117240770B CN 117240770 B CN117240770 B CN 117240770B CN 202311331639 A CN202311331639 A CN 202311331639A CN 117240770 B CN117240770 B CN 117240770B
Authority
CN
China
Prior art keywords
node
cluster
satellite
blockchain
nodes
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202311331639.3A
Other languages
Chinese (zh)
Other versions
CN117240770A (en
Inventor
尤星
邱琳
蔡文炳
姜泉江
王青伟
王妍洁
刘建
李琼
张银辉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shanghai Engineering Center for Microsatellites
Innovation Academy for Microsatellites of CAS
Original Assignee
Shanghai Engineering Center for Microsatellites
Innovation Academy for Microsatellites of CAS
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shanghai Engineering Center for Microsatellites, Innovation Academy for Microsatellites of CAS filed Critical Shanghai Engineering Center for Microsatellites
Priority to CN202311331639.3A priority Critical patent/CN117240770B/en
Publication of CN117240770A publication Critical patent/CN117240770A/en
Application granted granted Critical
Publication of CN117240770B publication Critical patent/CN117240770B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The application provides a satellite network routing method, which is applied to a satellite network with a plurality of clusters, wherein one cluster comprises the following steps: each satellite node generates a blockchain credential, the cluster head node generates a blockchain summarizing credential, when a source node in a satellite network receives a routing request and a cluster to which the source node belongs is consistent with a cluster to which a destination node belongs, at least one candidate node associated with the current node is determined, a legal node in the at least one candidate node is selected according to the blockchain credential of the at least one candidate node, and then the next node is selected from the legal nodes according to a preset routing strategy. Therefore, the application enables the current node to verify the credibility of the next node based on the publicly-trusted blockchain certificate, thereby guaranteeing the reliability and the safety of network transmission. Through the design of clustering layering, the fast convergence of block chain transmission can be realized during link updating, and the whole network burden caused by star road is further reduced.

Description

Satellite network routing method and device and electronic equipment
Technical Field
The present invention relates to the field of satellite networks, and in particular, to a method and apparatus for routing a satellite network, and an electronic device.
Background
With the rapid development of satellite communication technology, the number of satellites transmitting is increased in an explosive manner, and the security problem of satellite networking is gradually highlighted. Especially, the requirements of satellite networks in the fields of information support, emergency rescue and the like are continuously expanded, and higher requirements are put on the credibility and reliability of satellite communication links. Taking a micro-nano satellite network as an example, in the process of rapidly returning extremely important information by using inter-satellite links, whether the satellite access node and each routing node on a transmission path are trustworthy becomes extremely critical.
However, the openness of the satellite network makes it easy for an attacker to disguise the behavior of a neighboring node or the behavior of an external advisor, and it is generally difficult to verify whether the next satellite node to be accessed is trusted. Especially when the whole network is needed to support the scene of information return, the falsification and disguising of single or multiple satellite nodes are difficult to be found in time. This poses a great threat to ensuring the reliability and security of satellite network transmissions.
The most common and first considered method is encryption and decryption algorithm protection. However, the core of the encryption secure routing implementation relies on a reliable key. In most existing routing algorithm designs, such as Optimal Security Routing (OSR), self-organizing security on-demand distance vectors, link state optimized routing (OLSR), etc., a Central Authority (CA) must distribute keys among network nodes. However, in the case of a satellite network with a distributed nature, the central facility is obviously unsuitable and introduces further new safety risks.
Aiming at the scene and the requirement that a micro-nano satellite network with measurement and control information feedback is typical, high safety, high reliability and quick feedback, the problems that the satellite node safety is challenged by the distributed and open node characteristics of the satellite network and the publicly verifiable credibility historical information is difficult to obtain are considered.
Disclosure of Invention
The invention aims to provide a satellite network routing method, a device and electronic equipment, which are used for solving the problem that the existing satellite network is difficult to verify whether the next satellite node is credible or not so as to ensure the reliability and the safety of network transmission.
To achieve the above object, in a first aspect of the present invention, there is provided a satellite network routing method applied to a satellite network, wherein the satellite network has a plurality of clusters, each cluster including a selected one of cluster head nodes and at least one satellite node corresponding to the one of cluster head nodes, each satellite node generating a corresponding blockchain credential according to authentication information thereof and writing the corresponding blockchain credential into an inter-satellite blockchain, the cluster head nodes generating a blockchain summary credential of the one cluster according to all authentication information of the one cluster, the method comprising:
Responding to a routing request received by a source node of a satellite network, and determining whether a cluster to which the source node belongs is consistent with a cluster to which a destination node belongs;
When the cluster to which the source node belongs is consistent with the cluster to which the destination node belongs, the source node routes to the destination node through multiple hops in the cluster, wherein the following steps are executed in each hop:
at least one candidate node associated with the current node is determined, a legal node is selected from the at least one candidate node according to the blockchain credential of the at least one candidate node, and a next node to be skipped is selected from the legal nodes according to a preset routing strategy, wherein the vector included angle between each candidate node and the current node belongs to a preset range.
In an alternative embodiment, each cluster has a corresponding system number identification S i, and the system number identification S i of each cluster is any one of stub S i, multi-interface S i, forwarding S i.
In an alternative embodiment, each satellite node carries a respective local preference value, the local preference value being used to characterize the routing preferences of the respective satellite node; selecting a next node to be jumped from legal nodes according to a preset routing strategy, wherein the next node to be jumped comprises:
and selecting one legal node with the maximum corresponding local preference value from all legal nodes as the next node to be jumped.
In an alternative embodiment, selecting a next node to be skipped from legal nodes according to a preset routing policy includes:
Selecting one of the nodes with the shortest system number PATH S-PATH from the legal nodes as the next node to be jumped; or alternatively
One of the legal nodes closest to the NEXT HOP router NEXT-HOP is selected as the NEXT node to be hopped.
In an alternative embodiment, the method further comprises:
When the cluster to which the source node belongs is inconsistent with the cluster to which the destination node belongs, the source node performs routing through multi-hop steering to the first cluster head node in the cluster, and the first cluster head node performs routing to the second cluster head node, and the second cluster head node performs routing through multi-hop steering to the destination node in the cluster;
The first cluster head node refers to a cluster head node in a cluster to which the source node belongs, and the second cluster head node refers to a cluster head node in a cluster to which the destination node belongs.
In an alternative embodiment, the step of routing by the first cluster head node to the second cluster head node comprises:
acquiring subnet reachability information of a target cluster through an inter-satellite block chain, wherein the subnet reachability information is used for representing node attributes of cluster head nodes in the target cluster, and the target cluster is the cluster to which the target node belongs;
Verifying the second cluster head node according to the subnet reachability information;
and when the verification result is legal, routing is carried out to the second cluster head node by the first cluster head node.
In an alternative embodiment, after selecting the next node to be skipped from all legal nodes through a preset routing policy, the method further includes:
Monitoring the relay time of the next node relative to the current node by adopting a heartbeat monitoring mode;
If the relay time exceeds the appointed time of the inter-satellite blockchain, the address of the next node is added into a local blacklist and written into the inter-satellite blockchain.
In an alternative embodiment, after adding the address of the next node to the local blacklist and writing to the inter-satellite blockchain, the method further includes:
performing multiple rounds of iterative updating on the block chain certificates of each satellite node except for the next node in the cluster, wherein in each round of iterative updating, the following steps are performed:
Sending a credential update request to an adjacent node by an update node, and prompting the adjacent node to generate a new blockchain credential according to update authentication information of the adjacent node, wherein the update node refers to a node which has generated a corresponding new blockchain credential;
And stopping the iterative updating operation until the cluster head node generates a new blockchain summarizing certificate according to all the updating authentication information in one cluster.
In a second aspect, the present application provides a satellite network routing apparatus for use in a satellite network having a plurality of clusters, each cluster comprising a selected one of the cluster head nodes and at least one of the satellite nodes corresponding to one of the cluster head nodes, in one of the clusters: each satellite node generates a corresponding blockchain credential according to authentication information of the satellite node and writes the blockchain credential into an inter-satellite blockchain, and the cluster head node generates a blockchain summary credential of a cluster according to all authentication information of the cluster, and the device comprises:
the route request response module is used for responding to the route request received by the source node of the satellite network and determining whether the cluster to which the source node belongs is consistent with the cluster to which the destination node belongs;
The node routing module is used for routing by the source node to the destination node through a plurality of hops in the cluster when the cluster to which the source node belongs is consistent with the cluster to which the destination node belongs, wherein the following steps are executed in each hop:
at least one candidate node associated with the current node is determined, a legal node is selected from the at least one candidate node according to the at least one candidate node, and a next node to be skipped is selected from the legal nodes according to a preset routing strategy, wherein a vector included angle between each candidate node and the current node belongs to a preset range.
In an alternative embodiment, each cluster has a corresponding system number identification S i, and the system number identification S i of each cluster is any one of stub S i, multi-interface S i, forwarding S i.
In an alternative embodiment, each satellite node carries a respective local preference value, the local preference value being used to characterize the routing preferences of the respective satellite node; selecting a next node to be jumped from legal nodes according to a preset routing strategy, wherein the node routing module is used for:
and selecting one legal node with the maximum corresponding local preference value from all legal nodes as the next node to be jumped.
In an alternative embodiment, selecting a next node to be skipped from legal nodes according to a preset routing policy, where the node routing module is configured to:
Selecting one of the nodes with the shortest system number PATH S-PATH from the legal nodes as the next node to be jumped; or alternatively
One of the legal nodes closest to the NEXT HOP router NEXT-HOP is selected as the NEXT node to be hopped.
In an alternative embodiment, the node routing module is further configured to:
When the cluster to which the source node belongs is inconsistent with the cluster to which the destination node belongs, the source node performs routing through multi-hop steering to the first cluster head node in the cluster, and the first cluster head node performs routing to the second cluster head node, and the second cluster head node performs routing through multi-hop steering to the destination node in the cluster;
The first cluster head node refers to a cluster head node in a cluster to which the source node belongs, and the second cluster head node refers to a cluster head node in a cluster to which the destination node belongs.
In an alternative embodiment, in the step of routing from the first cluster head node to the second cluster head node, the node routing module is specifically configured to:
acquiring subnet reachability information of a target cluster through an inter-satellite block chain, wherein the subnet reachability information is used for representing node attributes of cluster head nodes in the target cluster, and the target cluster is the cluster to which the target node belongs;
Verifying the second cluster head node according to the subnet reachability information;
and when the verification result is legal, routing is carried out to the second cluster head node by the first cluster head node.
In an optional implementation manner, after selecting a next node to be skipped from all legal nodes through a preset routing policy, the node routing module is further configured to:
Monitoring the relay time of the next node relative to the current node by adopting a heartbeat monitoring mode;
If the relay time exceeds the appointed time of the inter-satellite blockchain, the address of the next node is added into a local blacklist and written into the inter-satellite blockchain.
In an alternative embodiment, after adding the address of the next node to the local blacklist and writing to the inter-satellite blockchain, the node routing module is further configured to:
performing multiple rounds of iterative updating on the block chain certificates of each satellite node except for the next node in the cluster, wherein in each round of iterative updating, the following steps are performed:
Sending a credential update request to an adjacent node by an update node, and prompting the adjacent node to generate a new blockchain credential according to update authentication information of the adjacent node, wherein the update node refers to a node which has generated a corresponding new blockchain credential;
And stopping the iterative updating operation until the cluster head node generates a new blockchain summarizing certificate according to all the updating authentication information in one cluster.
In a third aspect, an electronic device is provided that includes a processor and a memory; wherein the memory has stored therein instructions which, when invoked by the processor, cause the processor to perform the method according to any of the first aspects described above.
Compared with the prior art, the application has the following advantages:
One of the advantages of the application is that: according to the method, each satellite node and cluster head node in the satellite network are registered in an inter-satellite blockchain, when a route request is received by a source node of the satellite network and a cluster to which the source node belongs is consistent with a cluster to which a destination node belongs, at least one candidate node associated with the current node can be determined, legal nodes are selected from the at least one candidate node according to blockchain certificates of the at least one candidate node, and next nodes to be skipped are selected from the legal nodes according to a preset route strategy, so that in each route process, whether transmission of the current node to the next node is credible can be judged in a publicly verified mode through the blockchain certificates, and therefore safety and reliability of network transmission are guaranteed.
The second advantage of the application is that: the method comprises the steps of carrying out clustering treatment on a satellite network, forming a plurality of clusters on the satellite network, generating a blockchain voucher in each cluster by using authentication information of satellite nodes, and generating a blockchain summarizing voucher of the cluster according to all authentication information in a cluster head node, so that an inter-satellite blockchain forms a clustering layered structure in the satellite network, and in such a way, when an emergency (such as link interruption) occurs, the intra-cluster updating realizes rapid convergence of blockchain transmission, thereby reducing the total network updating burden caused by a plurality of star road.
The third advantage of the application is that: in the method, the sub-network reachability information of each other can be publicly verified in the inter-satellite block chain between the cluster head nodes, so that the safety and reliability of the network transmission among clusters are ensured.
Drawings
The accompanying drawings, which are included to provide a further understanding of the application and are incorporated in and constitute a part of this specification, illustrate embodiments of the application and together with the description serve to explain the principles of the application. In the accompanying drawings:
FIG. 1 is a schematic topology diagram of a micro-nano satellite measurement and control network according to an exemplary embodiment of the present application;
FIG. 2 is a flow chart of a satellite network routing method provided by an exemplary embodiment of the present application;
FIG. 3 is a schematic diagram of intra-cluster node hop routing provided by an exemplary embodiment of the present application;
FIG. 4 is a schematic diagram of inter-cluster node hop routing provided by an exemplary embodiment of the present application;
FIG. 5 is a schematic diagram of a satellite network routing device according to an exemplary embodiment of the present application;
fig. 6 is a schematic diagram of an electronic device according to an exemplary embodiment of the present application.
Detailed Description
In order to more clearly illustrate the technical solutions of the embodiments of the present application, the drawings that are used in the description of the embodiments will be briefly described below. It is apparent that the drawings in the following description are only some examples or embodiments of the present application, and it is apparent to those of ordinary skill in the art that the present application may be applied to other similar situations according to the drawings without inventive effort. Unless otherwise apparent from the context of the language or otherwise specified, like reference numerals in the figures refer to like structures or operations.
As used in the specification and in the claims, the terms "a," "an," "the," and/or "the" are not specific to a singular, but may include a plurality, unless the context clearly dictates otherwise. In general, the terms "comprises" and "comprising" merely indicate that the steps and elements are explicitly identified, and they do not constitute an exclusive list, as other steps or elements may be included in a method or apparatus.
It is noted that "plurality" in the present application means at least two.
The following describes the steps of a satellite network routing method provided by the present application in detail using a micro-nano satellite measurement and control network as a specific embodiment. The method aims at designing a routing protocol of a low orbit satellite network by using a blockchain technology and solves the practical problem of updating convergence complexity of the blockchain technology in the satellite network security routing application.
The micro-nano satellite measurement and control network described in this embodiment has a plurality of clusters, where the plurality of clusters may be divided according to the orbital positions of the satellite nodes, or may be manually divided according to the service priorities of the satellite nodes in the network, which is not limited in this application.
Referring to fig. 1, a schematic topology diagram of a micro-nano satellite measurement and control network according to this embodiment is shown. Two clusters of the micro-nano satellite measurement and control network are exemplarily shown in the topological schematic diagram: cluster 1, cluster 2. In particular, in fig. 1, the cluster 1 includes a selected cluster head node 1 and satellite nodes 1-4 corresponding to the cluster head node 1, and the cluster 2 includes a selected cluster head node 2 and satellite nodes 5-8 corresponding to the cluster head node 2.
In cluster 1, the true data of satellite node 1-satellite node 4 is as follows:
track height: 1050km;
track inclination angle: 53 °;
The two adjacent track surfaces are positioned, the ascent points of the two adjacent track surfaces are different in the right ascension point by 5 degrees, and the true near point is different in the right ascertainment point by 3 degrees.
The cluster head node 1 is a large satellite node with higher on-board processing capacity and communication capacity than the satellite nodes 1 and 4, the cluster head node 1 and the satellite nodes 3 are fixedly connected by an inter-satellite link, and the cluster head node 1 and the satellite nodes 4 are fixedly connected by the inter-satellite link.
In cluster 2, the true data of satellite node 5-satellite node 8 is as follows:
Track height: 1000km;
track inclination angle: 48 °;
The two adjacent track surfaces are positioned, the ascent points of the two adjacent track surfaces are different in the right ascension point by 5 degrees, and the true near point is different in the right ascertainment point by 3 degrees.
The cluster head node 2 is a large satellite node with higher on-board processing capacity and communication capacity than the satellite node 5-satellite node 8, the cluster head node 2 and the satellite node 7 are fixedly connected by an inter-satellite link, and the cluster head node 2 and the satellite node 8 are fixedly connected by an inter-satellite link.
In addition, the cluster head node 1 and the cluster head node 2 are also provided with inter-satellite link fixed connection.
In the cluster 1, the satellite node 1 is fixedly connected to the satellite nodes 2 and 3 via inter-satellite links, and the satellite node 4 is fixedly connected to the satellite nodes 3 and 2 via inter-satellite links.
Optionally, preferentially transmitting on a fixed connection between satellite node 1 and satellite node 2; and is preferentially transmitted over the fixed connection between the satellite node 3 and the cluster head node 1.
In the cluster 2, the satellite nodes 5 are fixedly connected to the satellite nodes 6 and 7 via inter-satellite links, and the satellite nodes 8 are fixedly connected to the satellite nodes 6 and 7 via inter-satellite links.
Optionally, preferentially transmitting on a fixed connection between satellite node 5 and satellite node 6; and is preferentially transmitted over the fixed connection between the satellite node 7 and the cluster head node 2.
In this embodiment, the satellite nodes 1 to 4 each generate corresponding blockchain certificates according to their authentication information, and write the blockchain certificates into inter-satellite blockchains respectively. The cluster head node 1 generates a blockchain summarization certificate of the cluster 1 according to all authentication information in the cluster, and writes the blockchain summarization certificate of the cluster 1 into inter-satellite blockchains. Similarly, the satellite nodes 5-8 each generate corresponding blockchain credentials based on their authentication information and write into the inter-satellite blockchain. The cluster head node 2 generates a blockchain summarization certificate of the cluster 2 according to all authentication information in the cluster, and writes the blockchain summarization certificate of the cluster 2 into inter-satellite blockchains.
Based on the above manner, in the micro-nano satellite measurement and control network provided by the embodiment, the cluster head node 1, the cluster head node 2 and the satellite nodes 1-8 are all registered on the inter-satellite blockchain. After registration is completed, a selected one of the satellite nodes or cluster head nodes may create an intelligent contract on the inter-satellite blockchain and distribute the intelligent contract address to all of the satellite nodes and cluster head nodes so that the satellite nodes and cluster head nodes can participate in routing in a subsequent process.
In this embodiment, the authentication information of each satellite node, for example, includes: the transit time of the satellite node, the corresponding terminal position, the corresponding clustering position, etc. The cluster head node generates blockchain summarization certificates of the cluster according to the authentication information.
In this embodiment, a corresponding system number identifier S i may be assigned to each cluster, where the system number identifier S i may be any one of the following: stub S i, multi-interface S i, forwarding S i.
For example, cluster 1 has a multi-interface system number identification S 1 and cluster 2 has a forwarding interface system number identification S 2 in the micro-nano satellite measurement and control network.
In this embodiment, each satellite node may be assigned a respective local preference value that characterizes the routing preferences of the respective satellite node.
Illustratively, the local preference value may be set according to a node attribute of the satellite node, e.g., according to a system number identification class of a corresponding cluster of the satellite node, an inter-cluster hierarchy (e.g., an intra-cluster node or a cluster head node), a function, and so on.
Based on the topology, referring to fig. 2, a flowchart of a satellite network routing method provided in this embodiment includes:
S201, responding to a route request received by a source node of a satellite network, and determining whether a cluster to which the source node belongs is consistent with a cluster to which a destination node belongs; if yes, S202 is executed, otherwise S203 is executed.
Specifically, the source node refers to a satellite node that receives the routing request, and the destination node refers to a satellite node associated with a gateway that needs to be reached.
S202, the source node routes to the destination node through a plurality of hops in the cluster, wherein the following steps are executed in each hop: at least one candidate node associated with the current node is determined, a legal node is selected from the at least one candidate node according to the blockchain credential of the at least one candidate node, and a next node to be skipped is selected from the legal nodes according to a preset routing policy.
Specifically, the vector included angle between each candidate node and the current node belongs to a preset range. The vector included angle refers to an included angle formed between each candidate node and the current node in a space position. In this embodiment, the preset range is as follows: [0, 180 ° ].
The following method can be adopted for selecting the next node according to the preset routing strategy: 1) Selecting a legal node with the highest local preference value as a next node; 2) Selecting one of the nodes with the shortest system number PATH S-PATH from the legal nodes as the next node to be jumped; 3) And selecting one closest to the NEXT HOP router NEXT-HOP from legal nodes as the NEXT node to be hopped.
It should be noted that, in this embodiment, the above-mentioned methods may be adopted independently or may be followed sequentially. Illustratively, the most appropriate next node may be found in order of priority of 1) -2) -3).
For example, in one possible scenario, the legal node with the highest local preference value is preferentially selected as the next node, but when a plurality of legal nodes have the same highest local preference value, then one of the plurality of legal nodes with the shortest system number PATH S-PATH is selected as the next node.
For another example, when a plurality of legal nodes have the shortest system number PATH S-PATH, one of the plurality of legal nodes closest to the NEXT HOP router NEXT-HOP may be selected as the NEXT node to be hopped.
The description will be given taking the satellite node 1 as the source node and the satellite node 4 as the destination node. As shown in fig. 3, when satellite node 1 receives the routing request, it invokes an inter-satellite blockchain smart contract to read the blockchain credentials of each of satellite node 2 and satellite node 3, and then verifies satellite node 2 and satellite node 3 according to the blockchain credentials. When the verification result passes, selecting the next node to be jumped from the satellite nodes 2 and 3 according to a preset routing strategy as follows: a satellite node 2. Similarly, when a route is relayed to satellite node 2, satellite node 4 is authenticated based on the blockchain credentials of its associated satellite node 4. When the verification result passes, selecting the next node according to a preset routing strategy as follows: satellite nodes 4.
S203, the source node performs routing through multi-hop steering to the first cluster head node in the cluster, and the first cluster head node performs routing to the second cluster head node, and the second cluster head node performs routing through multi-hop steering to the destination node in the cluster.
Specifically, the first cluster head node refers to a cluster head node in a cluster to which the source node belongs, and the second cluster head node refers to a cluster head node in a cluster to which the destination node belongs.
At least one candidate node associated with the current node is determined in each jump within the cluster, the current node may invoke an inter-satellite blockchain intelligent contract to read blockchain credentials of each candidate node associated therewith, and select a legitimate node from the at least one candidate node based on the blockchain credentials of the at least one candidate node. The legal nodes can be one or more, and the source node selects a proper node from the one or more legal nodes according to a preset routing strategy until the first cluster head node finishes routing.
The first cluster head node acquires the subnet reachability information of the second cluster head node in the target cluster through the inter-satellite block chain, wherein the target cluster is the cluster to which the target node belongs, and the subnet reachability information is used for representing the node attribute of the cluster head node in the target cluster. Because the sub-network reachability information of each other can be publicly verified in the inter-satellite block chain between the cluster head nodes, the transmission reliability between clusters is ensured. And verifying the second cluster head node according to the subnet reachability information, and routing the second cluster head node by the first cluster head node under the condition that the verification result passes.
The satellite node 1 is taken as a source node and the satellite node 7 is taken as a destination node for illustration. As shown in fig. 4, when the satellite node 1 receives the routing request, it routes through multiple hops in the cluster 1 to the cluster head node 1 according to the above manner, then the cluster head node 1 verifies the cluster head node 2 according to the subnet reachability information of the cluster 2, and when the verification result passes, the cluster head node 1 routes to the cluster head node 2. The cluster head node 2 then authenticates the satellite node 7 based on its associated blockchain credential for the satellite node 7. When the verification result passes, selecting the next node as a target node according to a preset routing strategy, namely: satellite nodes 7.
In one possible implementation manner, a heartbeat monitoring mode is adopted to monitor the relay time of the next node relative to the current node; if the relay time exceeds the appointed time of the intelligent contract, the address of the next node is added into the local blacklist and written into the inter-satellite blockchain, so that adverse effects on network transmission caused by delay relay or interruption of part of nodes can be reduced as much as possible, and the maximization of network transmission is ensured.
Further, when the next node fails in relay, i.e. the link is interrupted, multiple rounds of iterative updating can be performed on the blockchain credentials of each satellite node except the next node in the cluster. Specifically, in each round of iterative updating, a credential update request is sent to its neighboring node by an updating node, which refers to a node that has generated a corresponding new blockchain credential, causing the neighboring node to generate a new blockchain credential according to its updated authentication information. And generating new blockchain summarization certificates by the cluster head node according to all the updated authentication information in one cluster, and stopping iterative updating. It can be seen that, because the satellite network provided by the application adopts a clustering and layering mode, when the link is interrupted and the blockchain needs to be updated, the blockchain update in the cluster with the link interruption does not affect the satellite nodes in other clusters, so that the mode can realize the rapid convergence of the blockchain update transmission, and further can reduce the whole network update burden caused by star road.
Further, referring to fig. 5, the present application provides a satellite network routing apparatus, wherein a satellite network has a plurality of clusters, each cluster includes a selected one of cluster head nodes and at least one satellite node corresponding to the one of cluster head nodes, each satellite node generates a corresponding blockchain credential according to authentication information thereof and writes the corresponding blockchain credential into an inter-satellite blockchain, and the cluster head node generates a blockchain summary credential of the one cluster according to all authentication information of the one cluster, the apparatus comprising:
a routing request response module 501, configured to determine, in response to a routing request received by a source node of a satellite network, whether a cluster to which the source node belongs is consistent with a cluster to which a destination node belongs;
The node routing module 502 is configured to route to the destination node through multiple hops in the cluster when the cluster to which the source node belongs is consistent with the cluster to which the destination node belongs, where in each hop, the following steps are performed:
at least one candidate node associated with the current node is determined, a legal node is selected from the at least one candidate node according to the blockchain credential of the at least one candidate node, and a next node to be skipped is selected from the legal nodes according to a preset routing strategy, wherein the vector included angle between each candidate node and the current node belongs to a preset range.
In an alternative embodiment, each cluster has a corresponding system number identification S i, and the system number identification S i of each cluster is any one of stub S i, multi-interface S i, forwarding S i.
In an alternative embodiment, each satellite node carries a respective local preference value, the local preference value being used to characterize the routing preferences of the respective satellite node; selecting a next node to be skipped from legal nodes according to a preset routing policy, wherein the node routing module 502 is configured to:
and selecting one legal node with the maximum corresponding local preference value from all legal nodes as the next node to be jumped.
In an alternative embodiment, the node routing module 502 is configured to select a next node to be skipped from the legal nodes according to a preset routing policy:
Selecting one of the nodes with the shortest system number PATH S-PATH from the legal nodes as the next node to be jumped; or alternatively
One of the legal nodes closest to the NEXT HOP router NEXT-HOP is selected as the NEXT node to be hopped.
In an alternative embodiment, the node routing module 502 is further configured to:
When the cluster to which the source node belongs is inconsistent with the cluster to which the destination node belongs, the source node performs routing through multi-hop steering to the first cluster head node in the cluster, and the first cluster head node performs routing to the second cluster head node, and the second cluster head node performs routing through multi-hop steering to the destination node in the cluster;
The first cluster head node refers to a cluster head node in a cluster to which the source node belongs, and the second cluster head node refers to a cluster head node in a cluster to which the destination node belongs.
In an alternative embodiment, in the step of routing from the first cluster head node to the second cluster head node, the node routing module 502 is specifically configured to:
acquiring subnet reachability information of a target cluster through an inter-satellite block chain, wherein the subnet reachability information is used for representing node attributes of cluster head nodes in the target cluster, and the target cluster is the cluster to which the target node belongs;
Verifying the second cluster head node according to the subnet reachability information;
and when the verification result is legal, routing is carried out to the second cluster head node by the first cluster head node.
In an alternative embodiment, after selecting the next node to be skipped from the legal nodes through a preset routing policy, the node routing module 502 is further configured to:
Monitoring the relay time of the next node relative to the current node by adopting a heartbeat monitoring mode;
If the relay time exceeds the appointed time of the inter-satellite blockchain, the address of the next node is added into a local blacklist and written into the inter-satellite blockchain.
In an alternative embodiment, after adding the address of the next node to the local blacklist and writing to the inter-star blockchain, the node routing module 502 is further configured to:
performing multiple rounds of iterative updating on the block chain certificates of each satellite node except for the next node in the cluster, wherein in each round of iterative updating, the following steps are performed:
Sending a credential update request to an adjacent node by an update node, and prompting the adjacent node to generate a new blockchain credential according to update authentication information of the adjacent node, wherein the update node refers to a node which has generated a corresponding new blockchain credential;
And stopping the iterative updating operation until the cluster head node generates a new blockchain summarizing certificate according to all the updating authentication information in one cluster.
Referring to fig. 6, the present application also provides an electronic device including:
a memory 601; and
A processor 602, the memory 1101 storing instructions that when invoked by the processor cause the processor to perform the steps of the satellite network routing method as described in any of the above.
It is to be appreciated that the processor referred to in the embodiments of the present application may be a CPU, but may also be other general purpose processors, DSP, ASIC, FPGA or other programmable logic devices, discrete gate or transistor logic devices, discrete hardware components, or the like. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like.
It should also be understood that the memory referred to in embodiments of the present application may be volatile memory or nonvolatile memory, or may include both volatile and nonvolatile memory. The nonvolatile memory may be a read-only memory (ROM), a programmable ROM, an erasable ROM, an electrically erasable ROM, or a flash memory, among others. The volatile memory may be random access memory (random access memory, RAM) which acts as external cache memory. By way of example, and not limitation, many forms of RAM are available, such as static random access memory, dynamic random access memory, synchronous dynamic random access memory, double data rate synchronous dynamic random access memory, enhanced synchronous dynamic random access memory, synchronous link dynamic random access memory, and direct memory bus random access memory.
It should be noted that when the processor is a general-purpose processor, DSP, ASIC, FPGA or other programmable logic device, discrete gate or transistor logic device, discrete hardware components, the memory (storage module) is integrated into the processor.
The application provides a satellite network routing method, a device and electronic equipment, wherein each satellite node and a cluster head node in a satellite network are registered in an inter-satellite blockchain, so that when a routing request is received by a source node of the satellite network and a cluster to which the source node belongs is consistent with a cluster to which a destination node belongs, at least one candidate node associated with a current node can be determined, a legal node is selected from the at least one candidate node according to blockchain credentials of the at least one candidate node, and a next node to be jumped is selected from the legal nodes according to a preset routing strategy, and therefore, in each routing process, whether the transmission of the current node facing the next node is credible or not can be judged in a publicly-verified mode through the blockchain credentials, thereby ensuring the safety and reliability of network transmission.
The application also carries out clustering processing on the satellite network to form a plurality of clusters on the satellite network, then generates a blockchain voucher in each cluster by utilizing the authentication information of the satellite node, and generates a blockchain summarizing voucher of the cluster according to all the authentication information at the cluster head node, so that the inter-satellite blockchain forms a clustering layered structure in the satellite network, and in such a way, when an emergency (such as link interruption) occurs, the intra-cluster updating realizes the rapid convergence of the blockchain transmission, thereby reducing the total network updating burden caused by a plurality of star road.
The application also discloses and verifies the sub-network accessibility information of each other in the inter-satellite block chain through the cluster head nodes and the cluster head nodes, thereby guaranteeing the safety and reliability of the network transmission among clusters.
While the basic concepts have been described above, it will be apparent to those skilled in the art that the foregoing disclosure is by way of example only and is not intended to be limiting. Although not explicitly described herein, various modifications, improvements and adaptations of the application may occur to one skilled in the art. Such modifications, improvements, and modifications are intended to be suggested within the present disclosure, and therefore, such modifications, improvements, and adaptations are intended to be within the spirit and scope of the exemplary embodiments of the present disclosure.
Meanwhile, the present application uses specific words to describe embodiments of the present application. Reference to "one embodiment," "an embodiment," and/or "some embodiments" means that a particular feature, structure, or characteristic is associated with at least one embodiment of the application. Thus, it should be emphasized and should be appreciated that two or more references to "an embodiment" or "one embodiment" or "an alternative embodiment" in various positions in this specification are not necessarily referring to the same embodiment. Furthermore, certain features, structures, or characteristics of one or more embodiments of the application may be combined as suitable.
Some aspects of the application may be performed entirely by hardware, entirely by software (including firmware, resident software, micro-code, etc.) or by a combination of hardware and software. The above hardware or software may be referred to as a "data block," module, "" engine, "" unit, "" component, "or" system. The processor may be one or more Application Specific Integrated Circuits (ASICs), digital Signal Processors (DSPs), digital signal processing devices (DAPDs), programmable Logic Devices (PLDs), field Programmable Gate Arrays (FPGAs), processors, controllers, microcontrollers, microprocessors, or a combination thereof. Furthermore, aspects of the application may take the form of a computer product, comprising computer-readable program code, embodied in one or more computer-readable media. For example, computer-readable media can include, but are not limited to, magnetic storage devices (e.g., hard disk, floppy disk, magnetic strips … …), optical disks (e.g., compact disk CD, digital versatile disk DVD … …), smart cards, and flash memory devices (e.g., card, stick, key drive … …).
The computer readable medium may comprise a propagated data signal with the computer program code embodied therein, for example, on a baseband or as part of a carrier wave. The propagated signal may take on a variety of forms, including electro-magnetic, optical, etc., or any suitable combination thereof. A computer readable medium can be any computer readable medium that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, apparatus, or device. Program code located on a computer readable medium may be propagated through any suitable medium, including radio, cable, fiber optic cable, radio frequency signals, or the like, or a combination of any of the foregoing.
Similarly, it should be noted that in order to simplify the description of the present disclosure and thereby aid in understanding one or more inventive embodiments, various features are sometimes grouped together in a single embodiment, figure, or description thereof. This method of disclosure does not imply that the subject application requires more features than are set forth in the claims. Indeed, less than all of the features of a single embodiment disclosed above.
In some embodiments, numbers describing the components, number of attributes are used, it being understood that such numbers being used in the description of embodiments are modified in some examples by the modifier "about," approximately, "or" substantially. Unless otherwise indicated, "about," "approximately," or "substantially" indicate that the number allows for a 20% variation. Accordingly, in some embodiments, numerical parameters set forth in the specification and claims are approximations that may vary depending upon the desired properties sought to be obtained by the individual embodiments. In some embodiments, the numerical parameters should take into account the specified significant digits and employ a method for preserving the general number of digits. Although the numerical ranges and parameters set forth herein are approximations in some embodiments for use in determining the breadth of the range, in particular embodiments, the numerical values set forth herein are as precisely as possible.
While the application has been described with reference to the specific embodiments presently, it will be appreciated by those skilled in the art that the foregoing embodiments are merely illustrative of the application, and various equivalent changes and substitutions may be made without departing from the spirit of the application, and therefore, all changes and modifications to the embodiments are intended to be within the scope of the appended claims.

Claims (10)

1. A satellite network routing method, applied to a satellite network, the satellite network having a plurality of clusters, the clusters being partitioned according to orbital locations or traffic priorities of satellite nodes, each cluster comprising a selected one of the cluster head nodes and at least one of the satellite nodes corresponding to the one of the cluster head nodes, wherein, in one cluster: each satellite node generates a corresponding blockchain credential according to authentication information of the satellite node and writes the blockchain credential into an inter-satellite blockchain, and the cluster head node generates a blockchain summary credential of the cluster according to all authentication information of the cluster, wherein the method comprises the following steps:
Responding to a routing request received by a source node of the satellite network, and determining whether a cluster to which the source node belongs is consistent with a cluster to which a destination node belongs;
when the cluster to which the source node belongs is consistent with the cluster to which the destination node belongs, the source node performs routing by turning to the destination node through multiple hops in the cluster, wherein the following steps are executed in each hop:
at least one candidate node associated with the current node is determined, a legal node is selected from the at least one candidate node according to the blockchain credential of the at least one candidate node, and a next node to be skipped is selected from the legal nodes according to a preset routing strategy, wherein the vector included angle between each candidate node and the current node belongs to a preset range.
2. The method of claim 1, wherein each cluster has a corresponding system number identification S i, and the system number identification S i of each cluster is any one of stub S i, multi-interface S i, forwarding S i.
3. The method of claim 2, wherein each satellite node carries a respective local preference value, the local preference value being used to characterize the routing preferences of the respective satellite node; the selecting a next node to be skipped from the legal nodes according to a preset routing strategy comprises:
And selecting one legal node with the maximum corresponding local preference value from the legal nodes as the next node to be jumped.
4. The method of claim 2, wherein selecting the next node to be skipped from the legitimate nodes according to a preset routing policy comprises:
Selecting one of the legal nodes with the shortest system number PATH S-PATH as the next node to be jumped; or alternatively
And selecting one closest to a NEXT HOP router NEXT-HOP from the legal nodes as the NEXT node to be hopped.
5. The method of claim 1, wherein the method further comprises:
when the cluster to which the source node belongs is inconsistent with the cluster to which the destination node belongs, the source node performs routing through multi-hop steering to a first cluster head node in the cluster, and the first cluster head node performs routing to a second cluster head node, and the second cluster head node performs routing through multi-hop steering to the destination node in the cluster;
The first cluster head node is a cluster head node in a cluster to which the source node belongs, and the second cluster head node is a cluster head node in a cluster to which the destination node belongs.
6. The method of claim 5, wherein the step of routing by the first cluster head node to a second cluster head node comprises:
acquiring subnet reachability information of a target cluster through the inter-satellite block chain, wherein the subnet reachability information is used for representing node attributes of cluster head nodes in the target cluster, and the target cluster is the cluster to which the target node belongs;
verifying the second cluster head node according to the subnet reachability information;
And when the verification result is legal, routing is carried out to a second cluster head node by the first cluster head node.
7. The method of claim 1, wherein after the step of selecting the next node to be skipped from the legitimate nodes according to a preset routing policy, further comprising:
Monitoring the relay time of the next node relative to the current node by adopting a heartbeat monitoring mode;
And if the relay time exceeds the appointed time of the inter-satellite blockchain, adding the address of the next node into a local blacklist and writing the address into the inter-satellite blockchain.
8. The method of claim 7, wherein after the step of adding the address of the next node to a local blacklist and writing to the inter-satellite blockchain, further comprising:
Performing multiple rounds of iterative updating on the blockchain certificates of each satellite node except the next node in the cluster, wherein in each round of iterative updating, the following steps are performed:
Sending a credential update request to an adjacent node by an update node, and causing the adjacent node to generate a new blockchain credential according to update authentication information of the adjacent node, wherein the update node refers to a node which has generated a corresponding new blockchain credential;
And stopping the iterative updating operation until the cluster head node generates a new blockchain summarizing certificate according to all the updated authentication information in the cluster.
9. A satellite network routing apparatus for use in a satellite network, the satellite network having a plurality of clusters divided according to orbital locations or traffic priorities of satellite nodes, each cluster including a selected one of the cluster head nodes and at least one of the satellite nodes corresponding to the one of the cluster head nodes, wherein in one cluster: each satellite node generates a corresponding blockchain credential according to authentication information of the satellite node and writes the blockchain credential into an inter-satellite blockchain, and the cluster head node generates a blockchain summary credential of the cluster according to all authentication information of the cluster, wherein the device comprises:
The route request response module is used for responding to the route request received by the source node of the satellite network and determining whether the cluster to which the source node belongs is consistent with the cluster to which the destination node belongs;
The node routing module is used for routing by the source node through a plurality of hops in the cluster when the cluster to which the source node belongs is consistent with the cluster to which the destination node belongs, wherein the following steps are executed in each hop:
at least one candidate node associated with the current node is determined, a legal node is selected from the at least one candidate node according to the blockchain credential of the at least one candidate node, and a next node to be skipped is selected from the legal nodes according to a preset routing strategy, wherein the vector included angle between each candidate node and the current node belongs to a preset range.
10. An electronic device comprising a processor and a memory; the memory has stored therein instructions which, when invoked by the processor, cause the processor to perform the method of any of claims 1-8.
CN202311331639.3A 2023-10-13 2023-10-13 Satellite network routing method and device and electronic equipment Active CN117240770B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202311331639.3A CN117240770B (en) 2023-10-13 2023-10-13 Satellite network routing method and device and electronic equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202311331639.3A CN117240770B (en) 2023-10-13 2023-10-13 Satellite network routing method and device and electronic equipment

Publications (2)

Publication Number Publication Date
CN117240770A CN117240770A (en) 2023-12-15
CN117240770B true CN117240770B (en) 2024-05-28

Family

ID=89087928

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202311331639.3A Active CN117240770B (en) 2023-10-13 2023-10-13 Satellite network routing method and device and electronic equipment

Country Status (1)

Country Link
CN (1) CN117240770B (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9094856B1 (en) * 2014-02-25 2015-07-28 Intelligent Fusion Technology, Inc. Routing method for satellite communication network
CN105471493A (en) * 2015-11-17 2016-04-06 北京邮电大学 Multi-measure routing method applicable to double-layer satellite network
CN116455449A (en) * 2023-03-24 2023-07-18 哈尔滨工业大学(深圳) Satellite routing method, device, equipment and storage medium based on multi-objective optimization

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9094856B1 (en) * 2014-02-25 2015-07-28 Intelligent Fusion Technology, Inc. Routing method for satellite communication network
CN105471493A (en) * 2015-11-17 2016-04-06 北京邮电大学 Multi-measure routing method applicable to double-layer satellite network
CN116455449A (en) * 2023-03-24 2023-07-18 哈尔滨工业大学(深圳) Satellite routing method, device, equipment and storage medium based on multi-objective optimization

Also Published As

Publication number Publication date
CN117240770A (en) 2023-12-15

Similar Documents

Publication Publication Date Title
Mershad SURFER: A secure SDN-based routing protocol for internet of vehicles
Patel et al. Trust based approaches for secure routing in VANET: A Survey
US11804967B2 (en) Systems and methods for verifying a route taken by a communication
KR101518362B1 (en) Method and apparatus for providing network communication association information to applications and services
EP3975473A1 (en) Message transmission methods and apparatuses
Sharma et al. Third eye: an intelligent and secure route planning scheme for critical services provisions in internet of vehicles environment
US11049402B2 (en) Cryptography-based platooning mechanism for autonomous vehicle fleet management
CN113259394B (en) Cross-domain user authentication method, system and equipment based on routing computation
US20170099143A1 (en) Methods, networks and nodes for dynamically establishing encrypted communications
Mendiboure et al. A scalable blockchain-based approach for authentication and access control in software defined vehicular networks
US20090193506A1 (en) Cryptographic peer discovery, authentication, and authorization for on-path signaling
Fernando et al. Blockchain-powered software defined network-enabled networking infrastructure for cloud management
CN117240770B (en) Satellite network routing method and device and electronic equipment
Zeydan et al. Blockchain-based self-sovereign identity for routing in inter-domain networks
CN114338153A (en) IPSec negotiation method and device
Khezri et al. Security challenges in internet of vehicles (IoV) for ITS: A survey
Saravanan et al. Trust aware ad hoc routing protocol with key management based mechanism and optimal energy‐efficient cluster head selection in mobile ad hoc networks
Desai et al. Cache poisoning prevention scheme in 5G-enabled vehicular networks: A tangle-based theoretical perspective
Qabajeh et al. A more secure and scalable routing protocol for mobile ad hoc networks
CN114938278A (en) Zero trust access control method and device
Alouache et al. Securing southbound interface of HSDN-GRA vehicular routing protocol using a distributed trust
KR20190111532A (en) Operation method of communication node for access control in communication network based on multi hop
CN114826999B (en) Satellite network data transmission method and device
CN114500001B (en) Communication method and device
Liu et al. Ground Network Security

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant