可信高清视频编码系统安全架构设计与实现

发布时间：2018-05-05 12:44

本文选题：安全架构 + 可信计算　；参考：《重庆大学》2015年硕士论文

【摘要】：课题组研究的以应用于航空机载视频系统为目标的高清视频编码系统解决了当前机载视频系统编码效率低、视频清晰度不足等问题,但仍然有一个不可忽视的问题,航拍等机载视频一般属于敏感数据,必须保证其在采集、传输和存储等过程中的安全性和保密性。本课题以保障高清视频数据安全性为目的研究可信高清视频编码系统安全架构。首先对可信高清视频编码系统所面临的安全威胁进行分析研究,针对间谍本地攻击、黑客网络入侵以及视频传输过程中的拦截侦听等威胁,本文设计了包括可信嵌入式系统、网络入侵检测以及H.264视频加密等技术的系统整体安全架构。之后为了实现该安全架构深入研究了各项关键安全技术,具体内容如下:①可信嵌入式系统研究与应用。为了保证可信高清视频编码系统在本地端的安全性本文对可信嵌入式系统进行研究。通过对现有信任传递机制的研究和分析,提出了在保证安全性的前提下提升工作效率的扇形信任传递机制,并在此基础上以可信硬件模块为可信根,设计并实现了嵌入式系统安全启动功能。为进一步保证可信高清视频编码系统在启动后即运行过程中的安全性,对基于角色的用户权限管理和基于Proc系统的文件系统监控技术进行了研究与应用。②网络入侵检测系统设计。为预防可能来自网络端的入侵威胁,本文对网络入侵检测技术进行了深入研究。首先提出了基于隐条件随机场理论的网络入侵检测系统,极大的提高了入侵检测效率。之后提出了包括人工特征选择和后向特征消除封装器法的两级特征选择方法,该特征选择方法进一步提升了网络入侵检测系统在检测精确度和检测效率两方面的性能。③H.264视频加密技术研究。为预防视频数据在网络传输过程中被拦截侦听造成敏感信息泄露,本文对H.264高清视频编码标准的相关加密技术进行了详细的研究和分析,结合DM8168平台编码H.264视频的原理以及混沌密钥流,提出了基于混沌理论的H.264码流域加密方法,为视频保密性提供了重要的支撑。
[Abstract]:The high-definition video coding system, which is applied to airborne video system, has solved the problems of low coding efficiency and insufficient video clarity in airborne video system, but there is still a problem that can not be ignored. Airborne video such as aerial photography generally belongs to sensitive data, and its security and confidentiality must be guaranteed in the process of acquisition, transmission and storage. In order to ensure the security of HD video data, this paper studies the security architecture of trusted HD video coding system. Firstly, the security threats faced by trusted HD video coding system are analyzed and studied. Aiming at the threats such as spy local attack, hacker network intrusion and interception and interception during video transmission, this paper designs a trusted embedded system. The overall security architecture of network intrusion detection and H.264 video encryption. Then, in order to realize the security architecture, the key security technologies are deeply studied, which are as follows: 1: 1 trusted embedded system research and application. In order to ensure the security of trusted HD video coding system, this paper studies trusted embedded system. Based on the research and analysis of the existing trust transfer mechanism, a sector trust transfer mechanism is proposed to improve the efficiency of work under the premise of ensuring security, and on this basis, the trusted hardware module is taken as the trusted root. Design and implement the security boot function of embedded system. In order to further ensure the security of trusted high-definition video coding system, The role-based user authority management and file system monitoring technology based on Proc system are studied and applied. 2. The design of network intrusion detection system. In order to prevent the possible intrusion threat from the network, the network intrusion detection technology is studied in this paper. Firstly, a network intrusion detection system based on hidden conditional random field theory is proposed, which greatly improves the efficiency of intrusion detection. Then a two-level feature selection method including artificial feature selection and backward feature cancellation wrapper method is proposed. This feature selection method further improves the performance of the network intrusion detection system in terms of detection accuracy and detection efficiency. In order to prevent the sensitive information leakage caused by the interception and interception of video data in the transmission process of network, this paper makes a detailed study and analysis on the related encryption technology of H.264 high definition video coding standard. Based on the principle of H.264 video coding based on DM8168 platform and chaotic key stream, this paper proposes a scheme of H. 264 code basin encryption based on chaos theory, which provides an important support for video privacy.
【学位授予单位】：重庆大学
【学位级别】：硕士
【学位授予年份】：2015
【分类号】：V243;TN919.8

【相似文献】