Communication Terminal Attack Behavior Identification Algorithm Based on Trusted Cloud Computing#br#

Abstract

Abstract: Malicious attacks such as Trojan horse implantation pose a serious threat to communication terminals. Therefore, a communication terminal attack identification algorithm based on trusted cloud computing is proposed. The data acquisition module is used to obtain the data flow of the image of the communication terminal, and the trustworthiness chain is extended to the virtual machine manager and communication terminal of the cloud computing environment through the credibility verification mechanism. After detecting the credibility of the running environment of the communication terminal, the attack behavior identification module uses Bayesian algorithm to judge whether the data flow contains attack behavior. The maximum a posteriori probability of the attack behavior data is calculated to judge the category of the attack behavior, and the detection results are reflected to the management module. Combined with the rate limiting module, the data flow containing the attack behavior is limited until the end of the attack behavior of the communication terminal. The experimental results show that the algorithm can effectively improve the access security of the communication terminal and ensure the smooth transmission of data when the communication terminal is attacked. The average absolute percentage error of communication terminal attack behavior recognition under different degrees of interference environment is always less than 0.25%.

Key words: trusted cloud computing, communication terminal, aggressive behavior, data acquisition, rate limit, maximum a posteriori probability

MAO Ming-yang, XU Sheng-chao. Communication Terminal Attack Behavior Identification Algorithm Based on Trusted Cloud Computing#br#[J]. Computer and Modernization, 2022, 0(11): 37-42.

References ［26］

［1］	陈兴蜀,陈敬涵,邵国林,等. 基于会话流聚合的隐蔽性通信行为检测方法［J］. 电子科技大学学报, 2019,48(3):388-396.
［2］	张果. 基于云计算的恶意软件攻击行为自主防护仿真［J］. 计算机仿真, 2020,37(3):305-308.
［3］	史二颖,王正. 实时的移动互联网攻击盲检测与分析算法［J］. 电子技术应用, 2018,44(3):89-93.
［4］	阮清强. 自组织远距离无线通信网络易受攻击节点检测算法［J］. 中国电子科学研究院学报, 2018,13(4):394-398.
［5］	柴晓东. 一种在云基础架构中识别基于网络的攻击的新方法研究［J］. 电子器件, 2020,43(4):867-872.
［6］	张未名,邢云菲,胡轶楠. 基于云计算环境下网络入侵安全检测模式研究［J］. 情报科学, 2018,36(9):68-72.
［7］	朱利华,朱玲玲. 基于暹罗网络的云计算隐私保护算法［J］. 西南师范大学学报(自然科学版), 2021,46(7):84-89.
［8］	陈兴蜀,滑强,王毅桐,等. 云环境下SDN网络低速率DDoS攻击的研究［J］. 通信学报, 2019,40(6):210-222.
［9］	王田,沈雪微,罗皓,等. 基于雾计算的可信传感云研究进展［J］. 通信学报, 2019,40(3):170-181.
［10］	张帆,张聪,陈伟,等. 基于无干扰的云计算环境行为可信性分析［J］. 计算机学报, 2019,42(4):736-755.
［11］	潘瑞杰,王高才,黄珩逸. 云计算下基于动态用户信任度的属性访问控制［J］. 计算机科学, 2021,48(5):313-319.
［12］	傅江辉. 基于云计算的社交网络安全隐私数据融合方法［J］. 济南大学学报(自然科学版), 2021,35(1):29-33
［13］	郑振青,毋小省,王辉,等. 移动社交网络中的轨迹隐私PTPM保护方法［J］. 小型微型计算机系统, 2021,42(10):2153-2160.
［14］	贾若男,王晰巍,范晓春. 社交网络用户个人信息安全隐私保护行为影响因素研究［J］. 现代情报, 2021,41(9):105-114.
［15］	黄海平,张东军,王凯,等. 带权值的大规模社交网络数据隐私保护方法［J］. 计算机研究与发展, 2020,57(2):363-377.
［16］	李志,马春来,马涛,等. 基于位置信息的移动终端用户异常检测［J］. 计算机科学, 2019,46(3):180-187.
［17］	YIN X, WANG L T, JIA W K, et al. Semi-supervised transformation and deep embedding-based anomaly identification for agricultural Internet of Things［J］. IEEE Sensors Journal, 2021,21(22):24959-24966.
［18］	任家东,刘新倩,王倩,等. 基于KNN离群点检测和随机森林的多层入侵检测方法［J］. 计算机研究与发展, 2019,56(3):566-575.
［19］	TANIMURA T, YOSHIDA S, TAJIMA K, et al. Fiber-longitudinal anomaly position identification over multi-span transmission link out of receiver-end signals［J］. Journal of Lightwave Technology, 2020,38(9):2726-2733.
［20］	刘川意,林杰,唐博. 面向云计算模式运行环境可信性动态验证机制［J］. 软件学报, 2014,25(3):662-674
［21］	琚安康,郭渊博,李涛,等. 基于网络通信异常识别的多步攻击检测方法［J］. 通信学报, 2019,40(7):57-66.
［22］	杨建喜,张媛利,蒋华,等. 边缘计算中基于深度Q网络的物理层假冒攻击检测方法［J］. 计算机应用, 2020,40(11):3229-3235.
［23］	ZHOU K, HUI B, WANG J F, et al. A study on attention-based LSTM for abnormal behavior recognition with variable pooling［J］. Image and Vision Computing, 2021, 108(8):104120.1-104120.10.
［24］	陈雪倩,步兵. 基于网络流量和数据包的CBTC入侵检测系统［J］. 中国安全科学学报, 2019,29(S2):154-160.
［25］	张瑜,尚文利,赵剑明,等. Powerlink协议通讯的异常检测方法［J］. 计算机工程与设计, 2019,40(1):65-70.
［26］	张淼,季新生,刘文彦,等. 基于虚拟机迁移的DoS攻击防御方法［J］. 计算机应用研究, 2019,36(7):2174-2178.

[1]	LIU Qiang, LI Qiao, BAO Xiao. Data Acquisition Architecture Based on Domestic TCM Chip Encryption and Edge Cloud Collaborative Architecture [J]. Computer and Modernization, 2022, 0(08): 94-98.
[2]	WU Cong-yun, LIU Bin, LI Hai-yong, XU Xiao-feng. Intelligent Test System of Terminal Equipment of Relay Protection Information System [J]. Computer and Modernization, 2021, 0(07): 1-5.
[3]	HU Ming-ming1, SUN Yan-tao2, REN Shu-ting3. Performance Evaluation Method of Ad Hoc Routing Protocol Based on Wired Network [J]. Computer and Modernization, 2017, 0(6): 91-96.
[4]	QI Bin. Design and Implementation of Data Acquisition System of Networked Database [J]. Computer and Modernization, 2017, 0(5): 71-75.
[5]	YAN Shao-chun1,2, HAN Shu-ya1,2, ZHANG Ke1,2. Design and Implementation of Front Acquisition Module Based on Three-tier Architecture [J]. Computer and Modernization, 2017, 0(5): 113-115,119.
[6]	LIANG Wei-wei1， YIN Zhao-hui1， MU Rui-fen2， JIN Shuo1， WANG Bing1. Wireless Falling Weight Deflectometer Measurement Software Based on Android [J]. Computer and Modernization, 2016, 0(6): 49-52,58.
[7]	FU Yuan-di, ZHANG Yan-yuan, LIN Yi. Data Acquisition and Storage System Based on Online Compression [J]. Computer and Modernization, 2014, 0(7): 49-52+57.
[8]	YANG Hui， YU Zirong， CHEN Lijuan， CAI Pengxiang. Test System of Antigravity Casting Mould Filling Process Based on USB 2.0 Interface [J]. Computer and Modernization, 2014, 0(4): 219-222.
[9]	YE Zheng-kai, ZHU Jian-hong, LI Lin, WU Hao. Design and Implementation of Digital Storage Oscilloscope Based on SCM [J]. Computer and Modernization, 2014, 0(3): 11-14.
[10]	WANG Jian;LIU Lei. Data Acquisition and Analysis Instrument Based on Windows CE System [J]. Computer and Modernization, 2013, 1(3): 156-159,.
[11]	SHA Jie， LIU Zai-ying . Design & Implementation of Virtual Vector Signal Generator and Analyzer [J]. Computer and Modernization, 2013, 12(12): 149-154.
[12]	BU Yongbo;LUO Xiaoling;CHEN Yi. Temperature and Humidity Acquisition System Based on Sensor DHT11 [J]. Computer and Modernization, 2013, 1(11): 133-135.
[13]	LI Zhan-ming;ZHAO Jing. Design of Data Acquisition System Based on VB and Advantech Data Acquisition Card [J]. Computer and Modernization, 2012, 203(7): 236-238.
[14]	ZHANG Si-jun;XU Dong-dong;WANG Le-le;LU Zhen-yu. Design of Seat Statistics System Based on ZigBee Wireless Technology [J]. Computer and Modernization, 2012, 1(6): 62-65.
[15]	WAN Zhi-ping. Design of Data Acquisition and Transmission System Based on FPGA [J]. Computer and Modernization, 2012, 1(201): 134-136,.