摘要
物联网终端的显著特点是对外部世界进行感知与控制,但是传统安全威胁分析模型无法有效评估来自外部的攻击数据对物联网终端固件造成的危害。将新攻击面引入的攻击数据作为分析对象,通过对攻击数据在固件中的完整传播路径和交互过程进行建模,构建面向新攻击面的物联网终端固件安全威胁模型FSTM,从而分析物联网终端固件所面临的潜在威胁。分析结果表明,FSTM模型能有效描述物联网与物理世界紧耦合、与业务强相关的特性,为面向新攻击面的物联网终端安全检测技术研究提供理论指导。
Internet of Things(IoT)terminals can perceive and control the external environment.However,the traditional security threat analysis models fail to accurately evaluate the harm of external attacks on IoT terminal firmware.This paper takes the attack data introduced by the new attack surface as the analysis object,and builds the model of the complete propagation path and interactions of the attack data in firmware.On this basis,a security threat model called FSTM for IoT terminal firmware with a new attack surface is constructed to support the analysis of potential threats faced by IoT terminal firmware.The analysis results show that FSTM can accurately describe the tight coupling between IoT and the physical world,as well as the strong correlation between IoT and the services.The proposed model provides theoretical guidance for the research of IoT terminal security and detection technology based on the new attack surface.
作者
朱新兵
李清宝
张平
陈志锋
顾艳阳
ZHU Xinbing;LI Qingbao;ZHANG Ping;CHEN Zhifeng;GU Yanyang(Cyberspace Security College,PLA Strategic Support Force Information Engineering University,Zhengzhou 450003,China;State Key Laboratory of Mathematical Engineering and Advanced Computing,Zhengzhou 450003,China;Data Information Office,PLA Henan Province Military Region,Zhengzhou 450003,China)
出处
《计算机工程》
CAS
CSCD
北大核心
2021年第7期126-134,共9页
Computer Engineering
基金
国家自然科学基金(61802432)。
关键词
物联网
固件
新攻击面
攻击数据
安全威胁模型
Internet of Things(IoT)
firmware
new attack surface
attack data
security threat model
