Malicious packet injection,tampering,dropping and hijacking attacks exist in the remote communication between the cloud platform and the edge devices in the power Internet of Things with the architecture of"Cloud,Network,Edge and Terminal".An abnormality detection mechanism in power Internet of Things based on software-defined security is proposed,which overcomes the draw-backs of computation and bandwidth overhead incurred by inserting cryptographic tags that increase linear-scally as path lengthen in the traditional network.Based on the software-defined architec-ture,a flow running time is split into consecutive random epoch by address hopping.Each switch forwards packets according to the hopping address,the ingress and egress switch samples packets and generates traffic sketch in each epoch,and the controller detect abnormality based on the sketch.The proposed scheme is implemented and evaluated.The analyses and experiments demon-strate that the communication overhead of the proposed mechanism is less than the existing mecha-nisms,with less than 11%of additional forwarding delay and no more than 10%of throughput deg-radation.Therefore,the proposed scheme could effectively detects abnormality.
software-definedpower Internet of Thingstraffic sketchpacket forwardingabnor-mality detection
国家科技期刊平台
NSTL
万方数据
