信息网络安全 ›› 2016, Vol. 16 ›› Issue (12): 68-73.doi: 10.3969/j.issn.1671-1122.2016.12.010

• • 上一篇    下一篇

基于设备指纹决策树分类的IP视频专网入网检测方案研究

尹心明(), 胡正梁, 陈国梁, 黄海晔   

  1. 公安部第三研究所信息安全技术部,上海 201204
  • 收稿日期:2016-10-15 出版日期:2016-12-20 发布日期:2020-05-13
  • 作者简介:

    作者简介: 尹心明(1978—),男,湖北,工程师,硕士,主要研究方向为信息安全;胡正梁(1981—),男,安徽,硕士,主要研究方向为信息安全;陈国梁(1985—),男,江苏,本科,主要研究方向为信息安全;黄海晔(1975—),男,上海,硕士,主要研究方向为信息安全。

Research on IP Video Network Access Detection Based on Decision Tree Classification of Device Fingerprint

Xinming YIN(), Zhengliang HU, Guoliang CHEN, Haiye HUANG   

  1. Information Security Technology Division, The Third Research Institute of Ministry of Public Security, Shanghai 201204, China
  • Received:2016-10-15 Online:2016-12-20 Published:2020-05-13

摘要:

由于视频专网中大量的采集设备部署在公共区域,面临的安全问题较多,如何将视频设备安全、高效地接入视频专网是至关重要的。文章提出了一种基于设备指纹决策树分类算法的方案来解决视频专网设备入网检测的问题。该方案根据视频设备特征在操作系统指纹基础上设计了设备指纹,同时提出了视频专网设备指纹的采集方法和存储方法。通过设备指纹的决策树分类算法及时检测出视频专网中的非信任设备,并告警。为防止非法入侵和避免视频专网数据泄露起到重要作用。

关键词: 视频专网入网检测, 设备指纹, 决策树, 信息熵

Abstract:

As a lot of the video dedicated network acquisition equipments deployed in public areas, face more security issues. How to connect the video equipments safely and efficiently to the video dedicated network is very important. In this paper, we propose a decision tree classification algorithm of device fingerprint to solve the problem. According to the characteristics of the video equipments, we design the device fingerprint on the basis of the operating system fingerprint. Meanwhile, we also propose the collection and storage methods of the device fingerprint. The decision tree classification algorithm of fingerprint equipment can detect the non trusted devices in the video dedicated network, and accompanied by the alarm. In a word, this project can effectively prevent the illegal intrusion and avoid the video dedicated network data leakage.

Key words: video dedicated network access detection, device fingerprint, decision tree, information entropy

中图分类号: