大家讲坛：李挥 | MIN网络——多边共管主权互联网的架构及系统

”

What is the MIN network?

MIN network means multi-identifier network.

Professor Li believes that according to the current development trend of diversified network application requirements, the future network objects will be certainly diverse, corresponding to various addressing methods. In addition to IP addressing, various new addressing will co-exist, such as identity, service, content, industrial Internet, IoT, and satellite Internet. Hence, the core idea of MIN is to adapt to the future development direction, to provide a more open, condominium, secure, controllable, and co-governed future network.

”

Compared with IP networks, MIN has three core differences:

First, as its name suggests, MIN networks support various addressing methods. Different addressing methods can be selected in different application scenarios, and new identifiers can be customized in specific scenarios. Therefore, the MIN system is more flexible and efficient and can better adapt to a variety of application scenarios.

Second, the MIN network has the characteristics of co-governed. Professor Li's team realized a decentralized co-government scheme based on the Consortium Blockchain technology and implemented hierarchical management of cyberspace. Top-level identifiers are managed through voting using consortium blockchain, which enables global co-governance and connectivity between top-level domains. Sub-domains are independently managed by the owner of the top-level domain, which reflects the sovereignty and independence of cyberspace. Such hierarchical management architecture guarantees the security and flexibility of the system.

Third, different from the patchy and passive security policies of IP networks, MIN networks were designed with security as a core requirement. MIN proposed a multi-level security architecture to achieve the balance between security and manageability. Such architecture makes the MIN network a secure, peaceful, democratic, and transparent space for the rule of law.

”

Corresponding to these three advantages of the MIN network, the core technology of MIN includes a multi-identifier routing scheme supporting a huge number of identifiers, a consensus algorithm for consortium blockchain, endogenous security architecture integrating cyber mimic defense, authentication, and so on.

”

What is endogenous security? Endogenous security originated from the biological immune system in the field of biology and was later introduced and extended to the field of computer science. In short, endogenous security describes a comprehensive capability of the network. Endogenous security capabilities are composed of a series of security capabilities, which work together to form an immune system and achieve secure elements such as "redundancy", "heterogeneous" and "majority decision". With the development trend of the Internet of everything, network security has become complicated and severe. Therefore, it is urgent to innovate network security mechanisms. Changing from the traditional "patching" defensive mechanisms, we should create an endogenous secure network environment.

”

Professor Li introduced that the idea of endogenous security is integrated into the design of the MIN network at all layers. At the network transport layer, MIN proposed a routing mechanism with embedded authentication and packet signature mechanisms, which guarantees the reliability, authenticity, and non-repudiation of information transmission from the bottom of the network. At the network layer, MIN is identity-centric, meaning that users should access the network with their real identity. Such a scheme ensures that user behavior can be managed and controlled and provides a highly secure environment. At the network application layer, MIN selects important nodes to deploy mimic defense, which ensures data security from the upper layer of the network. These security mechanisms create an endogenous security architecture suited to MIN from the structure and ultimately achieve an exponential improvement in network security.

Each technology has its own advantages and suitable scenarios. At different layers of the network and different stages of information transmission, Professor Li's team chose the most appropriate technologies and innovated them according to their characteristics. Such methods realized the integration and innovation of a variety of frontier disciplines.

”

Up to now, MIN architecture and system have entered the initial demonstration application and pilot stage. Since 2019, cooperated with many universities and companies, MIN has been tested and applied in different scenarios at home and abroad.

In 2020, MIN became the technical route of the "Root Service System Project Based on New Network Identification Technology" of the Industrial Internet Innovation and Development Project of the Ministry of Industry and Information Technology of the People's Republic of China and participated in the bidding application.

In 2021, through the comprehensive evaluation of the professional group of the military equipment big data construction and application, the MIN-based high-security private network and mimic distributed storage system, as one of the 24 companies in the country, was selected into excellent achievements exhibition of the first "Equipment and Big Data Forum".

In 2022, Professor Li was invited to collaborate with the industry of Intelligent and Connected Vehicle to create a blue book and proposed MIN-V2X, which is a scheme of multi-identifier network for intelligent connected vehicle.

”

Professor Li introduced that his team proposed the concept of a "Co-governed Sovereignty Network" for the first time in the world and developed the system. In August 2020, his team published the first co-governed sovereignty network book by Tsinghua University Press on the world: Co-governance of Sovereignty: Legal Basis and a Prototype with Multi-identifier Networking Architecture. Its expanded English version was published by Springer Germany in July 2021. The English version is open source and has been downloaded more than 7100 times in the first year, and it is the first network architecture and technical solution for the co-governed cyberspace of the United Nations. In addition, more than ten relevant high-level papers have been published, and dozens of Chinese and American invention patents have been authorized. MIN architecture and systems have a wide range of prospects and application advantages in the world.

”

"After the long-term research, our project was selected as the leading technology achievement of the 6th Wuzhen World Internet Conference. The review group of the conference is composed of dozens of academicians and experts at home and abroad. It is the world's highest-standard Internet technology conference." says Professor Li at the end, "Besides, MIN has won Awards from a lot of local and international invention shows, such as the Diamond of International Invention of the year in the 22nd BIS Show & Awards British Invention Show、the Golden Award of the 25th National Exhibition of Inventions、the Gold Award of the 5th China (Shanghai) International Exhibition of Inventions. MIN was evaluated as 'the most subversive and practical network system and network security technology in the world' by Shenzhen Communication Administration. The above reflects the expectation of industry and academia to MIN network."

”

MIN has been supported by many projects from governments. In particularly, MIN is consulted by the Academician of the Chinese Academy of Engineering, Wu Jiangxing, the director of the Academic Committee of Shenzhen Key Laboratory of Information Theory and Future Networks. In addition, Professor Li and his team also extend their sincere thanks to China Telecom Corporation Limited, China United Network Communications Limited, Guangdong Communications and Networks Institute, CUHK, Hong Kong University of Science and Technology, Macau University of Science and Technology, Auckland University of Technology, University Tunku Abdul Rahman, The University of Sheffield, University of Waterloo, University of British Columbia, for providing experimental support.