In the domain of spatial crowdsourcing drone services, which includes tasks like delivery, surveillance, and data collection, secure communication is paramount. The Public Key Infrastructure (PKI) ensures this by providing a system for digital certificates that authenticate the identities of entities involved, securing data and command transmissions between drones and their operators. However, the centralized trust model of traditional PKI, dependent on Certificate Authorities (CAs), presents a vulnerability due to its single point of failure, risking security breaches. To counteract this, the paper presents D2XChain, a blockchain-based PKI framework designed for the Internet of Drone Things (IoDT). By decentralizing the CA infrastructure, D2XChain eliminates this single point of failure, thereby enhancing the security and reliability of drone communications. Fully compatible with the X.509 standard, it integrates seamlessly with existing PKI systems, supporting all key operations such as certificate registration, validation, verification, and revocation in a distributed manner. This innovative approach not only strengthens the defense of drone services against various security threats but also showcases its practical application through deployment on a private Ethereum testbed, representing a significant advancement in addressing the unique security challenges of drone-based services and ensuring their trustworthy operation in critical tasks.
翻译:在包含配送、监控和数据采集等任务的空间众包无人机服务领域,安全通信至关重要。公钥基础设施通过提供数字证书系统来认证参与实体的身份,从而确保无人机与其操作员之间的数据和指令传输安全。然而,传统PKI依赖于证书颁发机构的集中式信任模型,因其存在单点故障而构成安全漏洞,可能导致安全违规。为应对此问题,本文提出了D2XChain,一种专为无人机物联网设计的基于区块链的PKI框架。通过去中心化CA基础设施,D2XChain消除了单点故障,从而增强了无人机通信的安全性和可靠性。该框架完全兼容X.509标准,可与现有PKI系统无缝集成,以分布式方式支持证书注册、验证、核查和撤销等所有关键操作。这一创新方法不仅增强了无人机服务抵御各种安全威胁的能力,还通过在私有以太坊测试平台上的部署展示了其实际应用,代表了在应对无人机服务特有安全挑战、确保其在关键任务中可信运行方面的重大进展。