Netinfo Security ›› 2022, Vol. 22 ›› Issue (11): 36-46.doi: 10.3969/j.issn.1671-1122.2022.11.005

Previous Articles     Next Articles

Moving Target Defense Mechanism Research Based on Device Address in SD-IoT

HAN Li1, SONG Jixiang1, SUN Shimin2()   

  1. 1. School of Computer Science and Engineering, Tianjin University of Technology, Tianjin 300384, China
    2. School of Software, Tiangong University, Tianjin 300387, China
  • Received:2022-07-12 Online:2022-11-10 Published:2022-11-16
  • Contact: SUN Shimin E-mail:sunshimin@tiangong.edu.cn

Abstract:

The limited resources and static configuration of Internet of Things(IoT) terminal devices can lead to sniffing attack which causes theft and tampering of the device address (IP address or MAC address). The address hopping strategy defends against attackers by dynamically randomizing the address of the network device. In this paper, a weighted random selection of device address hopping method is proposed in the software defined Internet of things(SD-IoT) environment. By adding repeated constraints to the selection of virtual addresses in the hopping process, it can enhance the unpredictability of the device address hopping process and defend the occurrence of sniffing behavior. At the same time, the characteristics of centralized control of the SDN controller are used to detect the terminal equipment of the IoT to ensure the normal deployment of the address hopping strategy. According to the detection results, the address hopping period is dynamically adjusted to improve the performance of the service capability of network and security. Simulation results show that, within 5% of the system load, the proposed method can enhance the unpredictability of device addresses, and resist sniffing and spoofing behaviors in the IoT.

Key words: software defined Internet of things, weighted random select, sniffing, hopping period

CLC Number: