基于遺傳算法的計算機網絡安全路由

羅婷婷 鄒航菲

摘 ?要： 提出基于遺傳算法的計算機網絡安全路由優化方法，根據認證、接入控制和加密機制，多方向量化鏈路安全，結合服務質量參數構建多目標安全路由模型。根據公共緩沖池與最小預留帶寬的分配，選取多目標安全路由模型優化目標為：可行路徑平均時延最低、三類安全度量最低以及最大帶寬利用率最低等。采用自適應遺傳算法，以求解最優染色體編碼問題替代計算機網絡安全路由問題;設置適應度函數，將計算機網絡安全路由的目標函數最小化問題變換成最大化問題;選取算子進行交叉與變異，通過遺傳算法求解確定適應度值最優的個體，實現計算機網絡安全路由優化。仿真結果顯示：該方法確定路徑的平均時延為135 ms左右，平均最大帶寬利用率在0.5%左右，三類安全度量數值均低于其他兩種對比方法，說明該方法更能保障計算機網絡通暢與資源使用安全性。

關鍵詞： 遺傳算法; 計算機網絡; 安全路由; 安全度量; 帶寬鏈路; 適應度函數

中圖分類號： TN915.08?34; TP393.08 ? ? ? ? ? ? ? ?文獻標識碼： A ? ? ? ? ? ? ? ? 文章編號： 1004?373X（2020）07?0078?04

Computer network security routing based on genetic algorithm

LUO Tingting1， ZOU Hangfei2

（1. Department of Scientific Research and Development Planning， Jiangxi Police Institute， Nanchang 330103， China;

2. Department of Human Resource， Jiangxi Police Institute， Nanchang 330103， China）

Abstract： It is a new research idea in the field of computer network security routing to take security metrics as service quality parameter when optimizing network routing. An optimization method of computer network security routing based on genetic algorithm is proposed. According to the authentication， the access control and the encryption mechanism， the link security is quantified in multiple directions， and a multi?objective secure routing model is constructed with the reference of the service quality parameters. According to the allocation of common buffer pool and the minimum reserved bandwidth， the optimization goals of multi?objective security routing model is to achieve the lowest average delay of feasible path， the lowest security metrics of the three types and the lowest maximum bandwidth utilization rate. The adaptive genetic algorithm is adopted to make the optimal chromosome coding instead of the computer network security routing; the fitness function is set to transform the objective function minimization of computer network security routing into the objective function maximization; the operator is selected for crossover and mutation， and individuals with the best fitness value are determined by genetic algorithm to realize the optimization of computer network security routing. The simulation results show that the average delay of the path determination by the proposed method is about 135 ms， the average maximum bandwidth utilization rate is about 0.5%， and the three types of security metrics are lower than the other two methods. It is verified that the method can better guarantee the computer network access and resource security.

Keywords： genetic algorithm; computer network; security routing; security metrics; bandwidth link; fitness function

0 ?引 ?言

當代社會網絡信息技術在全球范圍內普遍使用，網絡資源合理利用是確保網絡資源暢通的基礎[1]。實現網絡資源合理利用的前提條件之一是計算機網絡安全路由選擇，將安全作為路由選取指標，是計算機網絡安全路由研究的新方向[2]。計算機網絡路由的安全性通過單一的安全度量難以準確描述，需要根據多種安全因素綜合確定[3]。……