《電子技術(shù)應(yīng)用》
您所在的位置:首頁(yè) > 通信與網(wǎng)絡(luò) > 設(shè)計(jì)應(yīng)用 > 基于零信任的無(wú)人機(jī)系統(tǒng)安全防護(hù)研究
基于零信任的無(wú)人機(jī)系統(tǒng)安全防護(hù)研究
電子技術(shù)應(yīng)用
姬勝凱,楊志明,趙建坤,李斌,黃毅龍
中國(guó)電子信息產(chǎn)業(yè)集團(tuán)有限公司第六研究所
摘要: 近年來(lái),無(wú)人機(jī)在軍民領(lǐng)域得到廣泛應(yīng)用,尤其是俄烏沖突以來(lái),其成本低、功能強(qiáng)的優(yōu)勢(shì)尤為凸顯,發(fā)揮了巨大的作用。但無(wú)人機(jī)的使用環(huán)境復(fù)雜、通常不可控,面臨更嚴(yán)重的安全威脅,如無(wú)人機(jī)劫持、網(wǎng)絡(luò)攻擊、無(wú)線通信干擾、惡意接入和數(shù)據(jù)竊取等安全風(fēng)險(xiǎn),針對(duì)上述風(fēng)險(xiǎn),目前無(wú)人機(jī)系統(tǒng)主要采取傳統(tǒng)安全防護(hù)手段,如采取無(wú)線網(wǎng)絡(luò)安全、數(shù)據(jù)加密等防護(hù)措施。零信任架構(gòu)作為一種新的安全模式,強(qiáng)調(diào)動(dòng)態(tài)信任,為無(wú)人機(jī)系統(tǒng)安全防護(hù)提供了新思路。對(duì)零信任安全防護(hù)架構(gòu)展開(kāi)研究,結(jié)合無(wú)人機(jī)系統(tǒng)的典型應(yīng)用,對(duì)無(wú)人機(jī)測(cè)控、數(shù)據(jù)傳輸面臨的安全風(fēng)險(xiǎn)進(jìn)行分析,針對(duì)風(fēng)險(xiǎn)提出基于零信任的無(wú)人機(jī)系統(tǒng)安全防護(hù)架構(gòu),并設(shè)計(jì)零信任技術(shù)在無(wú)人機(jī)測(cè)控、數(shù)據(jù)通信和典型場(chǎng)景的實(shí)現(xiàn)方案,為零信任架構(gòu)在軍民無(wú)人機(jī)系統(tǒng)中的具體實(shí)現(xiàn)提供有力支撐。
關(guān)鍵詞: 零信任 無(wú)人機(jī) 安全
中圖分類(lèi)號(hào):TN918.4 文獻(xiàn)標(biāo)志碼:A DOI: 10.16157/j.issn.0258-7998.245426
中文引用格式: 姬勝凱,楊志明,趙建坤,等. 基于零信任的無(wú)人機(jī)系統(tǒng)安全防護(hù)研究[J]. 電子技術(shù)應(yīng)用,2025,51(4):60-65.
英文引用格式: Ji Shengkai,Yang Zhiming,Zhao Jiankun,et al. Research on security protection of unmanned aerial vehicle systems based on zero trust[J]. Application of Electronic Technique,2025,51(4):60-65.
Research on security protection of unmanned aerial vehicle systems based on zero trust
Ji Shengkai,Yang Zhiming,Zhao Jiankun,Li Bin,Huang Yilong
The 6th Research Institute of China Electronics Corporation
Abstract: In recent years, unmanned aerial vehicles (UAVs) have been widely used in the military and civilian fields, especially since the Russia-Ukraine conflict, their advantages of low cost and strong functions are particularly prominent and have played a huge role. However, the usage environment of drones is complex and often uncontrollable, facing more serious security threats such as drone hijacking, network attacks, wireless communication interference, malicious access, and data theft. In response to these risks, traditional security measures such as wireless network security and data encryption are currently mainly adopted in drone systems. The zero trust architecture, as a new security model, emphasizes dynamic trust and provides new ideas for the security protection of unmanned aerial vehicle systems. This paper researches on zero trust security protection architecture, combined with typical applications of unmanned aerial vehicle systems, analyzes the security risks faced by unmanned aerial vehicle measurement and control, data transmission, and proposes a zero trust based unmanned aerial vehicle system security protection architecture to address these risks. It designs implementation solutions for zero trust technology in unmanned aerial vehicle measurement and control, data communication, and typical scenarios, providing strong support for the specific implementation of zero trust architecture in military and civilian unmanned aerial vehicle systems.
Key words : zero trust;unmanned aerial vehicle;security

引言

近幾年來(lái),無(wú)人機(jī)技術(shù)發(fā)展迅速,在軍民中廣泛使用,尤其是俄烏沖突以來(lái),其成本低、功能強(qiáng)大的優(yōu)勢(shì)尤為凸顯,發(fā)揮了巨大的作用。無(wú)人機(jī)因其部署容易、成本低、機(jī)動(dòng)性和懸停能力強(qiáng)等特點(diǎn),已廣泛應(yīng)用于救援、探測(cè)、農(nóng)業(yè)、監(jiān)控、無(wú)線覆蓋、無(wú)人投送、軍事探測(cè)和無(wú)人作戰(zhàn)等領(lǐng)域。在軍事領(lǐng)域,不斷推出無(wú)人蜂群等復(fù)雜的無(wú)人機(jī)作戰(zhàn)系統(tǒng),網(wǎng)絡(luò)化的無(wú)人機(jī)群具有數(shù)量多、范圍廣、速度快、成本低的優(yōu)勢(shì)[1],但隨之而來(lái)的是安全風(fēng)險(xiǎn)變大。針對(duì)無(wú)人機(jī)系統(tǒng)的安全威脅包括GPS欺騙攻擊、無(wú)人機(jī)劫持、網(wǎng)絡(luò)攻擊、無(wú)線通信干擾、惡意接入和數(shù)據(jù)竊取等,且各國(guó)都在研究反無(wú)人機(jī)作戰(zhàn)的技術(shù),針對(duì)無(wú)人機(jī)系統(tǒng)的攻擊事件頻率明顯增加,因此針對(duì)無(wú)人機(jī)系統(tǒng)的安全威脅和防護(hù)技術(shù)一直是無(wú)人機(jī)領(lǐng)域的研究熱點(diǎn)。

有別于傳統(tǒng)地面網(wǎng)絡(luò),無(wú)人機(jī)網(wǎng)絡(luò)存在終端節(jié)點(diǎn)數(shù)量大、管控信道開(kāi)放、拓?fù)浣Y(jié)構(gòu)時(shí)時(shí)變化、機(jī)間通信和地面測(cè)控雙網(wǎng)互聯(lián)互通等特點(diǎn),現(xiàn)有的安全技術(shù)可對(duì)無(wú)人機(jī)網(wǎng)絡(luò)進(jìn)行一定的防護(hù),但隨著無(wú)人機(jī)群網(wǎng)絡(luò)的復(fù)雜時(shí)變,需要一種細(xì)粒度、持續(xù)動(dòng)態(tài)和最小權(quán)限的無(wú)人機(jī)群系統(tǒng)安全防護(hù)架構(gòu)。零信任架構(gòu)作為一種新的安全模式,強(qiáng)調(diào)動(dòng)態(tài)信任,為無(wú)人機(jī)系統(tǒng)安全防護(hù)提供了新思路。零信任技術(shù)具有以身份為基石、業(yè)務(wù)安全訪問(wèn)、持續(xù)信任評(píng)估和動(dòng)態(tài)訪問(wèn)控制的關(guān)鍵能力[2],非常契合復(fù)雜的無(wú)人機(jī)系統(tǒng)的安全防護(hù)需求。


本文詳細(xì)內(nèi)容請(qǐng)下載:

http://www.ihrv.cn/resource/share/2000006396


作者信息:

姬勝凱,楊志明,趙建坤,李斌,黃毅龍

(中國(guó)電子信息產(chǎn)業(yè)集團(tuán)有限公司第六研究所,北京 100083)


Magazine.Subscription.jpg

此內(nèi)容為AET網(wǎng)站原創(chuàng),未經(jīng)授權(quán)禁止轉(zhuǎn)載。