基于属性访问控制策略的无人机飞控安全方案
Security Scheme of UAV Flight Control Based on Attribute Access Control Policy
庞宇翔 1陈泽茂1
作者信息
- 1. 武汉大学国家网络安全学院空天信息安全与可信计算教育部重点实验室 武汉 430072
- 折叠
摘要
飞控系统是无人机的核心部件,对无人机的功能和性能起着决定性作用,是无人机信息安全防护的重点对象.文中针对PX4飞控系统面临的恶意代码植入、内部交互数据篡改等安全风险,设计了一种面向位置环境的基于属性的访问控制策略(LE-ABAC),该策略基于访问控制实体属性和无人机外部位置环境信息制定访问控制规则,可以实现对无人机内的数据交互过程进行细粒度控制,保护关键交换数据的机密性与完整性.文中在PX4软件仿真平台上对所提方案进行了攻击仿真实验,结果表明该模型能够在不显著降低无人机飞控效率的前提下,有效保护飞控系统内部交互数据不被窃取和篡改.
Abstract
The flight control system is the core component of unmanned aerial vehicles(UAVs),which plays a decisive role in the function and performance,and it is a crucial target for information security protection.In this paper,a location-and-environment oriented attribute-based access control(LE-ABAC)policy is designed to deal with the security risks of malicious code injection and internal interactive data tampering faced by PX4 flight control system.The access control policy,based on object entity attri-butes and external location environment information of the UAV,formulates corresponding rules that enable fine-grained control of the data exchange process within the UAV,protecting the confidentiality and integrity of crucial data exchanges.In the study,attack simulation experiments are conducted on the PX4 software simulation platform to verify the proposed scheme.Finally,the results show that the model can effectively protect the interactive data of the flight control system from theft and tampering with-out significantly reducing the efficiency of UAV flight control execution.
关键词
无人机/飞控系统/基于属性的访问控制/信息安全Key words
Unmanned aerial vehicle/Flight control system/ABAC/Information security引用本文复制引用
基金项目
国家自然科学基金面上项目(61872430)
国家优秀青年科学基金(42122025)
出版年
2024
NETL
NSTL
万方数据