Shallow analyse of problem of safety of news of content couplet network
Compare Er from 1995? Gates alludes first concept of content couplet network arrives today, content couplet net already became the typical delegate that technology of communication of new generation information develops, in experience " swashbuckling " after the concept acclaims level, already entered the new level that uses to comprehensive practice at present, changing traditional industry pattern and human production way of life deeply. However, as in recent years safety of content couplet net atttacks incident increasingly frequency hair, the safe concussion influence to environment of network of user privacy, base is more and more outstanding also. The main factor of problem of safety of the safe risk that net of couplet of the safe situation that the article faces currently from content couplet net, content exists, generation analyses proceed with, put forward then relevant the countermeasure proposal that health of net of stimulative content couplet develops in order.
Problem of safety of news of the network below interconnection of everythings on earth gets attention fully
Domain of of all kinds and perpendicular application is affected safety of content couplet net by the problem
Content couplet net uses the square respect area that involves national economy and human society life, however in recent years much territory produces safe event: In wisdom city domain, business of service of 3 large main power supply exceeded Spain 2014 the intelligent ammeter of 30% is detected to discover existence is serious safe flaw, the person that inbreak can use this flaw to have charge of electricity con, shut circuit system even. In domain of medical treatment health, does Dick of American vice president hold the post of early when 2007? The heart attack that cut the Buddhist nun, the heart that investigates sectional suspicion to result from him is divided quiver implement wireless join function is used by assassin, the likelihood that this is regarded as attack of content couplet net to cause person to harm one of case. In domain of net of couplet of industrial other people, safe attack incident is endangered bigger, base of production of stage accumulating electricity was atttacked 2018 incident, 2017 blackmail the virus incident, Wukelan 2015 incident of massive power failure makes equipment of network of target industry couplet and system are sufferred inflict heavy losses on.
Problem of safety of content couplet net browbeats badly to privacy bracer
As the application of content couplet net, the huge data that involves user privacy will be recorded by equipment of network of couplet of of all kinds content, hidden danger of its data safety also all the more is serious. 2015 produce the flaw such as watch of intelligent toy, intelligence domestic and internationally many cases to atttack incident up to now, exceed information of contrail of 1 million families and children information, conversational recording information, action to wait to be divulged; 2017, some automat is atttacked by the hacker, by filch account of tens of credit card of 10 thousand users and biology feature identify the individual information such as data; Meanwhile, also content couplet net is photographed be exploded to give many flaw like the head, the hacker can use acquiescent proof to log onto equipment visit to photograph the real time picture that resembles a head. In addition, show according to concerning data, 10000 families can be generated about everyday amount to 150 million discrete data to nod. IDC report shows, equipment of network of global content couplet will have 200-250 2020 100 million. Data of huge user privacy is borne the weight of to record by place of giant equipment of content couplet network, coefficient of its safety risk also is provided to magnify extremely.
Each origanization construction pays close attention to safety of content couplet net in succession
The RSA plenary meeting that holds nearly two years, safe congress such as CES is right safety of content couplet net pays close attention to highly. On RSA 2018 safe congress, a lot of about safety of content couplet net the discussion of flaw is alluded, especially terminal unit or intelligence live in content couplet net product. On CES 2016 congress, safe attention spends content couplet net to was discharged to be in intelligent household, can apparel equipment and nobody drive before the car, rank the first.
The safe risk of network of content couplet network is analysed
Current, content couplet net was formed gradually with " the cloud, canal, end " the framework of 3 bases network that give priority to, compare with traditional Internet, the safe issue of content couplet net is more complex.
"Upright " -- terminal layer safety defends ability difference is changed bigger
Terminal unit basically is in charge of feeling outside information in content couplet net, include to collect, capture data or identify an object to wait. Its are phyletic and various, incorporate RFID chip, read write pressure sensor of scanner, temperature, network to photograph can apparel like head, intelligence car of freezer of air conditioning of equipment, unmanned aircraft, intelligence, intelligence... bulk arrives as a child big, the function conforms to the principle of simplicity sheet arrives rich, condition or couplet net or disconnect, and in be in white box to atttack an environment. Because applied setting is simple, ability of the memory of a lot of terminal, computation is limited, in safety of the deploy on its software is tall perhaps complex spend add decode algorithmic meeting to increase moving burden, bring about possibly even cannot move normally. And shift changes the another big characteristic that regards content couplet net as terminal, it is to make traditional network attrib border more " disappear " , rely on the safe product at network border to cannot produce effect normally. Together with equipment of a lot of content couplet network deploy is in unmanned monitoring setting, aggressor carries out attack more easily to its.
"Canal " -- security of complex communication agreement differs network layer structure
Network of content couplet network uses a variety of different compose networks, phase of communication transmission model is more more complex than Internet, the force such as algorithm of the means of a lot of attack such as attack of algorithm broken solution, agreement broken solution, bagman and Key, agreement, core, certificate defeats solution circumstance to happen from time to tome. Data of content couplet net transmits conduit oneself and problem of safety of transmission discharge content to also not allow to ignore. The communication that at present already the hacker passes the analysis, intelligence that defeat solution to balance car, unmanned aircraft to wait for equipment of content couplet network transmits an agreement, realize terminal of pair of content couplet net inbreak, hijack. In environment of net of couplet of a few special other people, data uses transmission information to be added simply only close even proclaimed in writing is transmitted, the hacker transmits an agreement through defeating solution to correspond, can read take transmitted data, hand-in-hand travel distorts, the operation such as screen.
"The cloud " -- risk of platform layer safety endangers whole network zoology
Application of content couplet net is intelligence equipment joins through the network normally high in the clouds, next App of have the aid of and high in the clouds have news alternant, achieve the long-range administration to equipment thereby. The data information that cloud platform can gather to place of terminal of content couplet net has analysis and government, and the safety administration to the network, be like the attestation of pair of equipment terminal, be answered to the lash-up of attack and monitor early-warning, and use to the protection of data information and safety etc. Future of platform of content couplet net bears the weight of more in high in the clouds, at present level of cloud security technology has matured with each passing day, and more safe menace often come from interior management or exterior permeate. If enterprise interior manages a mechanism,safety of not perfect, system defends do not deserve to cover, that one small logistic leak lets platform possibly or whole modes of life and relation to their environment falls into enemy hands thoroughly. And exterior the attack of blame tradition network that uses social engineering exists from beginning to end, once the system becomes a target, so again perfect preventive measure is possible by outside basket for holding earth fortunately to exercise to benefit the internal organs.
Affect the main factor of security of industry of content couplet network
The element of many sided brought about content couplet net to had made network news safety stage by stage " heavy disaster area " , among them already characteristic of technology of itself of technology of content couplet net accumulates formation character stage by stage, also burgeoning industry develops the common fault that exists in the process in high speed.
Industrial structure is complex
Content couplet net formed relatively whole zoology system gradually in developing a process, but go up in the foundation of three-layer framework more involved link of numerous industry chain, bring about share a part numerous, structure is complex. From group of the hardware chip of terminal layer, sensor, wireless model, to network layer each correspond operation business, compositive, platform serves the software development that applies a layer to platform again, system, this among them each link are in whole industry catenary indispensable. This needs each link to cooperate cheek by jowl, unified understanding ability ensures do not appear big safe question.
Safe consciousness is thin
The data that Gartner releases shows, to 2020, dimensions of market of net of global content couplet will amount to 1.9 trillion dollar. And in the backside with development of industrial high speed, quick and outspread dimensions, it is safety of manufacturer of content couplet net consciousness is thin, safety throws insufficient current situation. On one hand, amount of equipment of content couplet network giant, price is low, a lot of manufacturers throw serious inadequacy to safety to reduce cost. Gartner is forecasted, defray of safety of net of global content couplet will reach 1.5 billion dollar 2018, year increase rate maintains in 27% the left and right sides, this is compared with market dimensions photograph be not worth 1 ‰ even, difference is bigger. On the other hand, equipment of network of couplet of numerous other people and hardware manufacturer cannot resemble Internet enterprise taking safety seriously euqally, lack safe consciousness and talent reserve. AT&T to the whole world many 5000 enterprise investigates discovery, the enterprise of 85% is in or equipment of network of couplet of plan deploy content, and only 10% industries express to confidence protects equipment to avoid suffer hacker attack.
Superintendency policy and standard system short
The State Council was in 2013 " the directive opinion that about boosting content couplet net orderly health develops " in put forward " should strengthen content couplet network the safe evaluation of major system and application, risk is evaluated and safety defends the job, the security that system of great infrastructure, main business and key domain use network of safeguard content couplet can accuse " , but have not enter materiality phase at present, relevant policy code remains be born. The aspect is built in safe level system, although there already was net of many contents couplet inside the industry,the organization is advancing construction of system of standard of content couplet net, but setting of because technology of content couplet net is newer fast, application is rich, bring about system of standard of content couplet net to build pace lag to develop at content couplet net, and the safe level system with perfect lack and mature safe solution.
About strengthening news of network of content couplet network further safe countermeasure suggests
Development of content couplet network has entered drive, dimensions turns application deploy also is being carried fast, if safety of content couplet net will not catch up with without method of measure of form a complete set its grow pace. Proposal our country is mixed in policy of security of content couplet net, standard, application the respect such as Training Within Industry is advanced further, increase safe superintendency strength, guide and promote the whole industry attention to safe problem, rise to be mixed from personnel of course of study the user attention to safe risk, industry of network of safeguard content couplet lasts healthy progress.
Superintending the level, strengthen superintend fulfil, drive the safe metric system of domain of content couplet net to order. The proposal strengthens integral trade security to manage, build security to add up to compasses sex to detect mechanism, raise industry admittance threshold, the tie develops random elephant, evaluate from safe frame system, safe evaluation, risk, safety is on guard, safety deals with the respect such as plan drives standard standard formulate and be born.
In industrial level, drive compose to build content couplet network complete lifecycle is stereo defense system. Centralized safe system has been done to build between each module such as server of technology of hardware, operating system, communication, high in the clouds, database, arrive from development make, compositive, blend in safety design to lifecycle of product of content couplet network every measure, arrive from chip hardware, software, system, defend safety regard content couplet net as the step of form a complete set with every necessary link, drive whole industry to turn from passivity to safe demand for active, let industry of safe follow closely grow pace.
In technical level, accelerate development of technology of security of content couplet net to reach be on guard technical research. The attention strength of the proposal equipment manufacturer, research organization safe technology that increases the respect such as platform of agreement of soft to content couplet net hardware, operating system, communication, cloud, the safe and minatory monitoring discovery with significant research and development technology and safety defend technology, unitive industry strength makes modes of life and relation to their environment of safety of content couplet net.
Publicizing the level, popularize information to bring all-knowing knowledge, raise safe consciousness. Proposal company establishs right development idea, synchronism takes network news safety seriously, undertake from personnel of course of study to content couplet net safe knowledge gains ground to groom with the technology at the same time, enhance the safe consciousness from personnel of course of study and intellectual technical ability. In addition, the proposal raises consciousness of safety of user network news, selecting product of network of use content couplet while pay attention to safety to be on guard.
