《電子技術(shù)應(yīng)用》
您所在的位置:首頁(yè) > 通信與網(wǎng)絡(luò) > 設(shè)計(jì)應(yīng)用 > 邊緣計(jì)算安全與隱私保護(hù)研究進(jìn)展
邊緣計(jì)算安全與隱私保護(hù)研究進(jìn)展
網(wǎng)絡(luò)安全與數(shù)據(jù)治理 2期
沈傳年
(國(guó)家計(jì)算機(jī)網(wǎng)絡(luò)應(yīng)急技術(shù)處理協(xié)調(diào)中心上海分中心,上海201315)
摘要: 物聯(lián)網(wǎng)、5G等信息技術(shù)的快速發(fā)展加速了萬(wàn)物互聯(lián)時(shí)代的到來(lái),網(wǎng)絡(luò)邊緣設(shè)備的爆發(fā)式增長(zhǎng)產(chǎn)生了海量級(jí)邊緣數(shù)據(jù),傳統(tǒng)云計(jì)算模型的集中式大數(shù)據(jù)處理已無(wú)法滿足對(duì)邊緣設(shè)備海量數(shù)據(jù)的高效處理。邊緣計(jì)算作為一種新型計(jì)算模型,在更靠近用戶的網(wǎng)絡(luò)邊緣側(cè)就近提供服務(wù),減緩了網(wǎng)絡(luò)負(fù)載,增強(qiáng)了響應(yīng)能力,但同時(shí)由于邊緣環(huán)境的開(kāi)放性、多源異構(gòu)性、邊緣節(jié)點(diǎn)資源受限等特性,使得邊緣計(jì)算的安全與隱私保護(hù)面臨諸多挑戰(zhàn)。首先從安全需求出發(fā),圍繞身份認(rèn)證、通信安全協(xié)議、入侵檢測(cè)以及隱私保護(hù)等關(guān)鍵技術(shù),系統(tǒng)闡述和分析了邊緣計(jì)算安全與隱私保護(hù)領(lǐng)域的國(guó)內(nèi)外研究成果,最后提出了未來(lái)可能的研究方向。
中圖分類號(hào): TP309
文獻(xiàn)標(biāo)識(shí)碼: A
DOI: 10.20044/j.csdg.2097-1788.2022.02.007
引用格式: 沈傳年. 邊緣計(jì)算安全與隱私保護(hù)研究進(jìn)展[J].網(wǎng)絡(luò)安全與數(shù)據(jù)治理,2022,41(2):41-48.
Research progress of edge computing security and privacy-preserving
Shen Chuannian
(National Computer Network Emergency Response Technical Team/Coordination Center of China@Shanghai, Shanghai 201315,China)
Abstract: The rapid development of information technologies such as the Internet of Things and 5G accelerates the arrival of the era of the Internet of Everything,the explosive growth of network edge devices has produced massive edge data,the centralized big data processing of the traditional cloud computing model has been unable to meet the efficient processing of massive data of edge devices,therefore, edge computing comes into being at the right time.As a new computing model, edge computing provides services closer to the user′s network edge side,which reduces the network load and enhances the response ability. However, due to the openness and multi-source heterogeneity of the edge environment, the resources of edge nodes restriction and other characteristics make the security and privacy-preserving of edge computing faces many challenges.Firstly, the basic concept of edge computing is introduced,and then from the perspective of security requirements,focusing on the key technologies such as identity authentication, communication security protocol, intrusion detection and privacy-preserving,the research achievements in the field of edge computing security and privacy-preserving at home and abroad are systematically described and analyzed.Finally, the possible research directions in the future are proposed.
Key words : edge computing;identity authentication;intrusion detection;privacy-preserving

0 引言

近年來(lái),隨著物聯(lián)網(wǎng)、大數(shù)據(jù)、人工智能、區(qū)塊鏈、5G等信息技術(shù)的快速發(fā)展,萬(wàn)物互聯(lián)趨勢(shì)急速加劇,增強(qiáng)現(xiàn)實(shí)/虛擬現(xiàn)實(shí)、智能家居、智慧城市、遠(yuǎn)程醫(yī)療、無(wú)人駕駛等新型業(yè)務(wù)模式不斷涌現(xiàn),已廣泛應(yīng)用于日常生活中并帶來(lái)了極大的便利。網(wǎng)絡(luò)技術(shù)和應(yīng)用服務(wù)的進(jìn)一步發(fā)展使網(wǎng)絡(luò)邊緣設(shè)備的連接數(shù)量呈現(xiàn)爆發(fā)式增長(zhǎng)態(tài)勢(shì),與之相伴的是網(wǎng)絡(luò)邊緣設(shè)備所產(chǎn)生的海量級(jí)數(shù)據(jù)。根據(jù)Gartner的數(shù)據(jù)預(yù)測(cè),到2022年,超過(guò)50%的企業(yè)數(shù)據(jù)將在網(wǎng)絡(luò)邊緣側(cè)產(chǎn)生和處理。據(jù)國(guó)際數(shù)據(jù)中心(IDC)數(shù)據(jù)時(shí)代報(bào)告《世界的數(shù)字化:從邊緣到核心》預(yù)測(cè),到2025年全球?qū)a(chǎn)生175 ZB(澤字節(jié))的數(shù)據(jù)(1 ZB相當(dāng)于1萬(wàn)億GB),其中全球數(shù)十億臺(tái)邊緣設(shè)備將產(chǎn)生90 ZB以上的數(shù)據(jù)。

目前,海量數(shù)據(jù)的存儲(chǔ)和處理主要依賴于集中式的云計(jì)算[1]模式,即將所有數(shù)據(jù)通過(guò)網(wǎng)絡(luò)傳輸?shù)竭h(yuǎn)程云端數(shù)據(jù)中心,利用云端數(shù)據(jù)中心強(qiáng)大的計(jì)算能力集中式地解決計(jì)算和存儲(chǔ)問(wèn)題。但隨著物聯(lián)網(wǎng)和5G時(shí)代的到來(lái),以及云計(jì)算應(yīng)用的不斷激增,越來(lái)越多的應(yīng)用場(chǎng)景中需要計(jì)算龐大的數(shù)據(jù)并且能夠得到實(shí)時(shí)的反饋,而目前網(wǎng)絡(luò)帶寬的增長(zhǎng)速度遠(yuǎn)落后于數(shù)據(jù)量的增長(zhǎng)速度,同時(shí)復(fù)雜的網(wǎng)絡(luò)環(huán)境讓網(wǎng)絡(luò)時(shí)延難以顯著優(yōu)化,因此,傳統(tǒng)云計(jì)算模式已經(jīng)無(wú)法滿足網(wǎng)絡(luò)邊緣側(cè)“大連接、低時(shí)延、高帶寬”的資源需求,難以實(shí)時(shí)高效地支撐起基于萬(wàn)物互聯(lián)的應(yīng)用服務(wù),其暴露出的種種不足,主要表現(xiàn)在三個(gè)方面:

(1)帶寬和資源消耗問(wèn)題。網(wǎng)絡(luò)邊緣設(shè)備產(chǎn)生的海量數(shù)據(jù)使云計(jì)算的網(wǎng)絡(luò)帶寬、計(jì)算資源以及存儲(chǔ)資源變得日趨緊張,給以中心服務(wù)器為節(jié)點(diǎn)的云計(jì)算造成更大的數(shù)據(jù)瓶頸;

(2)數(shù)據(jù)處理的實(shí)時(shí)性問(wèn)題。云計(jì)算是在遠(yuǎn)程數(shù)據(jù)中心集中進(jìn)行數(shù)據(jù)處理,由于數(shù)據(jù)需要在邊緣設(shè)備和云數(shù)據(jù)中心之間進(jìn)行異地長(zhǎng)距離傳輸,必然會(huì)產(chǎn)生較高的網(wǎng)絡(luò)時(shí)延;

(3)用戶隱私保護(hù)問(wèn)題。云計(jì)算模式下,所有用戶數(shù)據(jù)都需要上傳并存儲(chǔ)在云數(shù)據(jù)中心。云數(shù)據(jù)中心由于無(wú)法對(duì)用戶數(shù)據(jù)的訪問(wèn)和使用進(jìn)行精細(xì)控制,容易導(dǎo)致用戶隱私數(shù)據(jù)遭受惡易攻擊、泄露和非法利用等風(fēng)險(xiǎn)[2]。

因此,在網(wǎng)絡(luò)終端邊緣側(cè)處理數(shù)據(jù)的模式,即邊緣計(jì)算[3]應(yīng)時(shí)而生,并迅速成為近年來(lái)的研究熱點(diǎn)[4]。




本文詳細(xì)內(nèi)容請(qǐng)下載:http://ihrv.cn/resource/share/2000004857




作者信息:

沈傳年

(國(guó)家計(jì)算機(jī)網(wǎng)絡(luò)應(yīng)急技術(shù)處理協(xié)調(diào)中心上海分中心,上海201315)


微信圖片_20210517164139.jpg

此內(nèi)容為AET網(wǎng)站原創(chuàng),未經(jīng)授權(quán)禁止轉(zhuǎn)載。