摘要
链路层加密数据的识别是进一步开展网络安全防护和协议识别的前提,当前方法主要是对流量所属的上层协议类型进行加密数据识别,采用混合多级的加密流量识别方法,对链路层加密数据的识别性能欠佳。提出一种基于0-1游程频数检测的链路层加密数据识别算法,采用随机性检测理论,进行链路层数据加密解密方案设计,构建标准正态分布函数的统计量对比特序列进行码元频数检测,实现0-1游程频数检测算法。实验表明,该算法能有效解决链路层块内频数检测过程中的分块长度选择及对加密数据识别率低的问题,链路层加密数据准确识别率提高显著,在网络保密数据传输等领域具有很好应用价值。
Link layer encrypting data recognition is the basis of further development of the network security protection and protocol recognition, the current main method takes upper layer protocols and flow types encrypted data identification meth-od, hybrid encryption flow identification method of link layer encrypting multistage is taken, the recognition performance of data is poor. A data encryption algorithm based on the link layer 0-1 run frequency detection is proposed, the random de-tection theory is used, link layer data encryption and decryption scheme design is obtained, construction of standard normal distribution function of statistics of element frequency detection of a bit sequence is achieved, 0-1 run frequency detection algorithm is realized. Experiments show that, this algorithm can effectively solve the low recognition rate problem in block length options of link layer, the link layer encrypting data accurate recognition rate is improved significantly, it has the very good application value in the fields of network security data transmission.
出处
《科技通报》
北大核心
2014年第10期145-147,共3页
Bulletin of Science and Technology
关键词
链路层
加密
随机性检测
识别
link layer
encryption
random detection
recognition
