| Summary: | 碩士 === 國立成功大學 === 工程科學系碩博士班 === 95 === Home networks are becoming increasingly popular. Open Service Gateway initiative (OSGi) platforms are a solution for integrating heterogeneous devices and e-services in home networks. In this thesis, it was found out that e-services running on an OSGi platform can not be fully protected, so a method to solve this problem is proposed. Based on Java security mechanisms, OSGi does not have its own intrusion detection system, resulting in weak protection from potential threats. Three types of threats, including shared object attacks, denial of service attacks, and abuse of legitimate e-service attacks, were simulated. All of these attacks are likely for commercial products and can successfully crash the system or steal information. To improve the security of OSGi, an Advanced OSGi Security Layer (AOSL) with detectors is proposed to solve the problems identified on OSGi platforms. The performance results show that AOSL can provide a more stable and secure execution environment for e-services, although it makes the execution time 14% to 135% slower than an unmodified OSGi platform.
|
|---|
