學術產出-Theses
Article View/Open
Publication Export
-
題名 基於區塊鏈智能合約的CWMP相容家用閘道器多租戶韌體部署平台
A CWMP-compatible Multitenant Deployment Platform for Home Gateways based on Blockchain作者 王稜惠
Wang, Leng-Hui貢獻者 廖峻鋒
Liao, Chun-Feng
王稜惠
Wang, Leng-Hui關鍵詞 區塊鏈
TR-069
CWMP
智慧家庭
韌體更新
Blockchain
TR-069
CWMP
Smart home
Firmware update日期 2019 上傳時間 7-Aug-2019 16:37:13 (UTC+8) 摘要 由於近代科技的快速發展,家庭中的硬體設備例如電信設備,具有連上網路快速增加,因此為了維護硬體設備上韌體的安全性,自動化韌體部署更新技術具有其重要性。開發與維護整套韌體部署系統必須花費大量建置成本,成為規模較小的設備廠商沉重的負擔。因此,基於區塊鏈的去中心化、不可竄改的特性,本研究提出並實作一個可共用的多租戶雲端平台來解決此問題。透過區塊鏈結合CWMP (又稱TR-069),讓互不信任的個別廠商願意共用一個部署平台,藉此,個別廠商只要低成本就可享有自動韌體部署更新服務,並且與目前廣被採用的CWMP規格相容。本研究採用分散式部署來分散伺服器的負載,同時達到安全的部署。並且採用智能合約進行租戶之間的隔離並觸發自動部署,預防租戶之間的資料互相影響。最後,我們基於此平台進行了伺服器端下載完成回應時間、吞吐量及效能測試的實驗。並由實驗結果發現隨著終端設備線性增加,到達某些程度後,伺服器台數需要進行增加。
The computing capability of the home appliances and communication bandwidth of the home network increase rapidly due to the rapid development of information and communication technologies. Many home appliances such as TVs, refrigerators, or air cleaners are now connected to the network, and the controlling software modules are typically dynamically and automatically updatable. CWMP is a widely deployed standard for an automatic software update of the home appliances. Maintaining a CWMP network usually involves the design and deployment of the overall security and trust infrastructure, the update file repository and the update audit mechanisms. Thus, maintaining a dedicated CWMP network is a heavy burden for the vendors of home appliances. Blockchain is an emerging technology that provides a secure and trust infrastructure based on distributed consensus. This thesis reports an integration architecture for a multitenant CWMP platform based on the blockchain. The core idea is to reify each automatic deployment task as a smart contract instance whose transactions are recorded in the append-only distributed ledger and verified by the peers. Also, the overall design should be transparent to the original CWMP entities. During the research process, a prototype based on the proposed architecture to verify the feasibility in three key scenarios has been built. The experimental results show that the proposed approach is feasible and is able to scale linearly in proportion to the number of managed devices.參考文獻 [1] B. C. Choi, S. H. Lee, J. C. Na, and J. H. Lee, “Secure firmware validation and update for consumer devices in home networking,” IEEE Trans. Consum. Electron., vol. 62, no. 1, pp. 39–44, 2016.[2] George Gabriel Richard Roy and S. B. R. Kumar, An Architecture to Enable Secure Firmware Updates on a Distributed-Trust IoT Network Using Blockchain George, vol. 291. Springer Singapore, 2019.[3] J. Bernstein and T. Spets, “Cpe wanmanagement protocol,” DSL Forum, vol. TR-069, no. Tech. Rep. pp. 1–228, 2004.[4] L. Zheng, Y. Hu, and S. Chen, “Research and Application of CWMP in Distributed Network Management System,” 2012 Int. Conf. Comput. Sci. Serv. Syst., pp. 647–650, 2012.[5] K. Christidis and M. Devetsikiotis, “Blockchains and Smart Contracts for the Internet of Things,” IEEE Access, vol. 4, pp. 2292–2303, 2016.[6] R. Enns, M. Bjorklund, J. Schoenwaelder, and A. Bierman, “Network Configuration Protocol (NETCONF),” Network. pp. 1–113, 2011.[7] B. Murray, K. Wilson, and M. Ellison, “Web Services Distributed Management: MUWS Primer,” OASIS WSDM Comm. Draft, pp. 1–107, 2006.[8] J. S. A. Arora, J. Cohen, J. Davis, E. Golovinsky, J. He, D. Hines, R.Mc-Collum, M. Milenkovic, P. Montgomery, “Web Services for Management (WS Management),” Distrib. Manag. Task Force, 2004.[9] H. Rachidi and A. Karmouch, “A framework for self-configuring devices using TR-069,” in International Conference on Multimedia Computing and Systems, IEEE, 2011, pp. 1–6.[10] A. E. Nikolaidis, S. S. Papastefanos, G. I. Stassinopoulos, M. P. K. Drakos, and G. A. Doumenis, “Automating remote configuration mechanisms for home devices,” IEEE Trans. Consum. Electron., vol. 52, no. 2, pp. 407–413, 2006.[11] M. Z. Bjelica, G. Golan, S. Radovanović, I. Papp, and G. Velikić, “Adaptive device cloud for Internet of Things applications,” Proc. 2014 IEEE Int. Conf. Consum. Electron. - China , ICCE-C 2014, pp. 1–4, 2014.[12] N. Nemet, S. Radovanovic, M. Cetkovic, N. Ikonic, and M. Z. Bjelica, “User self-help module for a device management cloud based on the TR-069 protocol,” IEEE Int. Conf. Consum. Electron. - Berlin, ICCE-Berlin, pp. 199–201, 2014.[13] C.-F. Liao, S.-T. Huang, and Y.-C. Wang, “Autonomic Smart Home Operations Management Using CWMP : A Task-Centric View,” pp. 971–982, 2016.[14] C.-F. Liao and Y.-R. Chen, “Resource-Oriented Architecture for Smart Home Operations Management Platforms,” 2018 Int. Conf. Platf. Technol. Serv., pp. 1–6, 2018.[15] O. Novo, “Blockchain Meets IoT: An Architecture for Scalable Access Management in IoT,” IEEE Internet Things J., vol. 5, no. 2, pp. 1184–1195, 2018.[16] S. Nakamoto, “Bitcoin: A Peer-to-Peer Electronic Cash SyNakamoto, S. (2008). Bitcoin: A Peer-to-Peer Electronic Cash System. Consulted, 1–9. doi:10.1007/s10838-008-9062-0stem,” J. Gen. Philos. Sci., vol. 39, no. 1, pp. 53–67, 2008.[17] Y. Li, J. M. McCune, and A. Perrig, “VIPER: Verifying the Integrity of PERipherals’ Firmware,” Proc. 18th ACM Conf. Comput. Commun. Secur., pp. 3–16, 2011.[18] M. A. Prada-Delgado, A. Vazquez-Reyes, and I. Baturone, “Trustworthy firmware update for Internet-of-Thing Devices using physical unclonable functions,” GIoTS 2017 - Glob. Internet Things Summit, Proc., no. 1, pp. 0–4, 2017.[19] B. Lee and J. H. Lee, “Blockchain-based secure firmware update for embedded devices in an Internet of Things environment,” J. Supercomput., vol. 73, no. 3, pp. 1152–1167, 2017.[20] A. Yohan, N. Lo, and S. Achawapong, “Blockchain-based Firmware Update Framework for Internet-of-Things Environment,” Conf. Inf. Knowl. Eng., pp. 151–155, 2018.[21] N. Nizamuddin, H. R. Hasan, and K. Salah, “IPFS-Blockchain-based Authenticity of Online Publications.” 描述 碩士
國立政治大學
資訊科學系
1067530121資料來源 http://thesis.lib.nccu.edu.tw/record/#G1067530121 資料類型 thesis dc.contributor.advisor 廖峻鋒 zh_TW dc.contributor.advisor Liao, Chun-Feng en_US dc.contributor.author (Authors) 王稜惠 zh_TW dc.contributor.author (Authors) Wang, Leng-Hui en_US dc.creator (作者) 王稜惠 zh_TW dc.creator (作者) Wang, Leng-Hui en_US dc.date (日期) 2019 en_US dc.date.accessioned 7-Aug-2019 16:37:13 (UTC+8) - dc.date.available 7-Aug-2019 16:37:13 (UTC+8) - dc.date.issued (上傳時間) 7-Aug-2019 16:37:13 (UTC+8) - dc.identifier (Other Identifiers) G1067530121 en_US dc.identifier.uri (URI) http://nccur.lib.nccu.edu.tw/handle/140.119/124877 - dc.description (描述) 碩士 zh_TW dc.description (描述) 國立政治大學 zh_TW dc.description (描述) 資訊科學系 zh_TW dc.description (描述) 1067530121 zh_TW dc.description.abstract (摘要) 由於近代科技的快速發展,家庭中的硬體設備例如電信設備,具有連上網路快速增加,因此為了維護硬體設備上韌體的安全性,自動化韌體部署更新技術具有其重要性。開發與維護整套韌體部署系統必須花費大量建置成本,成為規模較小的設備廠商沉重的負擔。因此,基於區塊鏈的去中心化、不可竄改的特性,本研究提出並實作一個可共用的多租戶雲端平台來解決此問題。透過區塊鏈結合CWMP (又稱TR-069),讓互不信任的個別廠商願意共用一個部署平台,藉此,個別廠商只要低成本就可享有自動韌體部署更新服務,並且與目前廣被採用的CWMP規格相容。本研究採用分散式部署來分散伺服器的負載,同時達到安全的部署。並且採用智能合約進行租戶之間的隔離並觸發自動部署,預防租戶之間的資料互相影響。最後,我們基於此平台進行了伺服器端下載完成回應時間、吞吐量及效能測試的實驗。並由實驗結果發現隨著終端設備線性增加,到達某些程度後,伺服器台數需要進行增加。 zh_TW dc.description.abstract (摘要) The computing capability of the home appliances and communication bandwidth of the home network increase rapidly due to the rapid development of information and communication technologies. Many home appliances such as TVs, refrigerators, or air cleaners are now connected to the network, and the controlling software modules are typically dynamically and automatically updatable. CWMP is a widely deployed standard for an automatic software update of the home appliances. Maintaining a CWMP network usually involves the design and deployment of the overall security and trust infrastructure, the update file repository and the update audit mechanisms. Thus, maintaining a dedicated CWMP network is a heavy burden for the vendors of home appliances. Blockchain is an emerging technology that provides a secure and trust infrastructure based on distributed consensus. This thesis reports an integration architecture for a multitenant CWMP platform based on the blockchain. The core idea is to reify each automatic deployment task as a smart contract instance whose transactions are recorded in the append-only distributed ledger and verified by the peers. Also, the overall design should be transparent to the original CWMP entities. During the research process, a prototype based on the proposed architecture to verify the feasibility in three key scenarios has been built. The experimental results show that the proposed approach is feasible and is able to scale linearly in proportion to the number of managed devices. en_US dc.description.tableofcontents 摘要 IABSTRACT II第一章 緒論 11.1 研究背景 11.2 研究動機 31.3 研究目標 4第二章 技術背景與相關研究 72.1 相關研究 72.2 CPE WAN MANAGEMENT PROTOCOL (CWMP) 112.3 區塊鏈與智能合約 182.4 INTERPLANETARY FILE SYSTEM (IPFS) 22第三章 系統設計 243.1 設計考量 243.1 系統架構 263.1.1. 靜態視角 263.1.2. 智能合約結構 283.1.3. 動態視角 293.2 部署機制與場景 303.2.1. 供應商會員註冊與身份驗證 303.2.2. 新CPE安裝 323.2.3. CPE系統更新維護 32第四章 系統實作 374.1 區塊鏈與IPFS使用框架及模組 384.2 CWMP使用使用框架及模組 40第五章 系統評估 425.1 案例研討 425.1.1. 廠商註冊與登入 425.1.2. 廠商管理CPE與韌體部署流程 455.2 ACS部署不同數量之CPE下載完成時間 495.3 ACS修改CPE參數之回應時間 505.4 ACS監控不同數量之CPE效能 51第六章 結論與未來工作 53參考文獻 54發表作品與著作 57 zh_TW dc.format.extent 6953724 bytes - dc.format.mimetype application/pdf - dc.source.uri (資料來源) http://thesis.lib.nccu.edu.tw/record/#G1067530121 en_US dc.subject (關鍵詞) 區塊鏈 zh_TW dc.subject (關鍵詞) TR-069 zh_TW dc.subject (關鍵詞) CWMP zh_TW dc.subject (關鍵詞) 智慧家庭 zh_TW dc.subject (關鍵詞) 韌體更新 zh_TW dc.subject (關鍵詞) Blockchain en_US dc.subject (關鍵詞) TR-069 en_US dc.subject (關鍵詞) CWMP en_US dc.subject (關鍵詞) Smart home en_US dc.subject (關鍵詞) Firmware update en_US dc.title (題名) 基於區塊鏈智能合約的CWMP相容家用閘道器多租戶韌體部署平台 zh_TW dc.title (題名) A CWMP-compatible Multitenant Deployment Platform for Home Gateways based on Blockchain en_US dc.type (資料類型) thesis en_US dc.relation.reference (參考文獻) [1] B. C. Choi, S. H. Lee, J. C. Na, and J. H. Lee, “Secure firmware validation and update for consumer devices in home networking,” IEEE Trans. Consum. Electron., vol. 62, no. 1, pp. 39–44, 2016.[2] George Gabriel Richard Roy and S. B. R. Kumar, An Architecture to Enable Secure Firmware Updates on a Distributed-Trust IoT Network Using Blockchain George, vol. 291. Springer Singapore, 2019.[3] J. Bernstein and T. Spets, “Cpe wanmanagement protocol,” DSL Forum, vol. TR-069, no. Tech. Rep. pp. 1–228, 2004.[4] L. Zheng, Y. Hu, and S. Chen, “Research and Application of CWMP in Distributed Network Management System,” 2012 Int. Conf. Comput. Sci. Serv. Syst., pp. 647–650, 2012.[5] K. Christidis and M. Devetsikiotis, “Blockchains and Smart Contracts for the Internet of Things,” IEEE Access, vol. 4, pp. 2292–2303, 2016.[6] R. Enns, M. Bjorklund, J. Schoenwaelder, and A. Bierman, “Network Configuration Protocol (NETCONF),” Network. pp. 1–113, 2011.[7] B. Murray, K. Wilson, and M. Ellison, “Web Services Distributed Management: MUWS Primer,” OASIS WSDM Comm. Draft, pp. 1–107, 2006.[8] J. S. A. Arora, J. Cohen, J. Davis, E. Golovinsky, J. He, D. Hines, R.Mc-Collum, M. Milenkovic, P. Montgomery, “Web Services for Management (WS Management),” Distrib. Manag. Task Force, 2004.[9] H. Rachidi and A. Karmouch, “A framework for self-configuring devices using TR-069,” in International Conference on Multimedia Computing and Systems, IEEE, 2011, pp. 1–6.[10] A. E. Nikolaidis, S. S. Papastefanos, G. I. Stassinopoulos, M. P. K. Drakos, and G. A. Doumenis, “Automating remote configuration mechanisms for home devices,” IEEE Trans. Consum. Electron., vol. 52, no. 2, pp. 407–413, 2006.[11] M. Z. Bjelica, G. Golan, S. Radovanović, I. Papp, and G. Velikić, “Adaptive device cloud for Internet of Things applications,” Proc. 2014 IEEE Int. Conf. Consum. Electron. - China , ICCE-C 2014, pp. 1–4, 2014.[12] N. Nemet, S. Radovanovic, M. Cetkovic, N. Ikonic, and M. Z. Bjelica, “User self-help module for a device management cloud based on the TR-069 protocol,” IEEE Int. Conf. Consum. Electron. - Berlin, ICCE-Berlin, pp. 199–201, 2014.[13] C.-F. Liao, S.-T. Huang, and Y.-C. Wang, “Autonomic Smart Home Operations Management Using CWMP : A Task-Centric View,” pp. 971–982, 2016.[14] C.-F. Liao and Y.-R. Chen, “Resource-Oriented Architecture for Smart Home Operations Management Platforms,” 2018 Int. Conf. Platf. Technol. Serv., pp. 1–6, 2018.[15] O. Novo, “Blockchain Meets IoT: An Architecture for Scalable Access Management in IoT,” IEEE Internet Things J., vol. 5, no. 2, pp. 1184–1195, 2018.[16] S. Nakamoto, “Bitcoin: A Peer-to-Peer Electronic Cash SyNakamoto, S. (2008). Bitcoin: A Peer-to-Peer Electronic Cash System. Consulted, 1–9. doi:10.1007/s10838-008-9062-0stem,” J. Gen. Philos. Sci., vol. 39, no. 1, pp. 53–67, 2008.[17] Y. Li, J. M. McCune, and A. Perrig, “VIPER: Verifying the Integrity of PERipherals’ Firmware,” Proc. 18th ACM Conf. Comput. Commun. Secur., pp. 3–16, 2011.[18] M. A. Prada-Delgado, A. Vazquez-Reyes, and I. Baturone, “Trustworthy firmware update for Internet-of-Thing Devices using physical unclonable functions,” GIoTS 2017 - Glob. Internet Things Summit, Proc., no. 1, pp. 0–4, 2017.[19] B. Lee and J. H. Lee, “Blockchain-based secure firmware update for embedded devices in an Internet of Things environment,” J. Supercomput., vol. 73, no. 3, pp. 1152–1167, 2017.[20] A. Yohan, N. Lo, and S. Achawapong, “Blockchain-based Firmware Update Framework for Internet-of-Things Environment,” Conf. Inf. Knowl. Eng., pp. 151–155, 2018.[21] N. Nizamuddin, H. R. Hasan, and K. Salah, “IPFS-Blockchain-based Authenticity of Online Publications.” zh_TW dc.identifier.doi (DOI) 10.6814/NCCU201900225 en_US
