首页> 外文期刊>IEEE transactions on dependable and secure computing >A Security Analysis and Revised Security Extension for the Precision Time Protocol
【24h】

A Security Analysis and Revised Security Extension for the Precision Time Protocol

机译:精密时间协议的安全分析和修订安全扩展

获取原文
获取原文并翻译 | 示例

摘要

The Precision Time Protocol (PTP) aims to provide highly accurate and synchronized clocks. Its defining standard, IEEE 1588, has a security section (& x201C;Annex K & x201D;) which relies on symmetric-key cryptography. In this paper we present a detailed threat analysis of the PTP standard, in which we highlight the security properties that should be addressed by any security extension. During this analysis we identify a sequence of new attacks and suggest non-cryptographic network-based defenses that mitigate them. We then suggest to replace Annex K & x0027;s symmetric cryptography by an efficient elliptic-curve Public-Key signatures. We implemented all our attacks to demonstrate their effectiveness, and also implemented and evaluated both the network and cryptographic defenses. Our results show that the proposed schemes are extremely practical, and much more secure than previous suggestions.
机译:精密时间协议(PTP)旨在提供高精度和同步的时钟。其定义标准IEEE 1588具有安全部分(&x201c;附件K&x201d;),它依赖于对称密钥加密。在本文中,我们提出了对PTP标准的详细威胁分析,其中我们突出了任何安全扩展名应解决的安全性属性。在此分析中,我们确定了一系列新攻击,并建议减轻它们的非加密网络的防御。然后,我们建议通过高效的椭圆曲线公钥签名来取代附件K&X0027; S对称密码。我们实施了我们所有的攻击,以展示其有效性,并实施和评估网络和加密防御。我们的研究结果表明,该方案非常实用,比以前的建议更安全。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有
  • 客服微信

  • 服务号