【摘要】：伴隨當(dāng)今網(wǎng)絡(luò)廣泛普及，產(chǎn)生諸多安全問題，如惡意軟件肆虐（像蠕蟲病毒Flame）、黑客攻擊（像維基解密網(wǎng)站遭受持續(xù)攻擊）、個人隱私泄密（像LinkedIn用戶密碼(password)泄露、云存儲Dropbox賬戶被盜）、操作系統(tǒng)安全（像Android系統(tǒng)）以及棱鏡門事件等網(wǎng)絡(luò)安全事件。當(dāng)下，信息科技產(chǎn)生的網(wǎng)絡(luò)安全問題已經(jīng)上升到國家戰(zhàn)略高度。在眾多網(wǎng)絡(luò)安全策略中，身份認(rèn)證是網(wǎng)絡(luò)安全的基礎(chǔ)。 文中分析了傳統(tǒng)靜態(tài)密碼身份認(rèn)證機(jī)制及其種種弊端，這類弊端使得它無法保障其安全性，因此動態(tài)密碼認(rèn)證技術(shù)應(yīng)運(yùn)而生。然而傳統(tǒng)動態(tài)密碼身份認(rèn)證仍然存在認(rèn)證效率低，安全強(qiáng)度不高的缺陷。文中對密碼學(xué)技術(shù)及相關(guān)理論、數(shù)字簽名技術(shù)以及動態(tài)密碼身份認(rèn)證技術(shù)進(jìn)行了深入研究，，提出了本文改進(jìn)的動態(tài)密碼身份認(rèn)證機(jī)制。 本文采用將MD5密碼算法、改進(jìn)的ELGamal密碼算法以及登陸次數(shù)相結(jié)合，并對其所涉及的各個環(huán)節(jié)進(jìn)行了改進(jìn)，比如ELGamal算法中的大素數(shù)生成階段，大數(shù)冪模運(yùn)算，數(shù)據(jù)庫存儲數(shù)據(jù)方面以及認(rèn)證機(jī)制過程等進(jìn)行了改進(jìn)，設(shè)計了一個基于挑戰(zhàn)/應(yīng)答的改進(jìn)的動態(tài)雙向身份認(rèn)證機(jī)制，使其具有更高的安全性和效率。最后對其性能、安全性和精確度等方面進(jìn)行總結(jié)和分析，最后將這種認(rèn)證機(jī)制應(yīng)用在了云平臺上。
[Abstract]:With the popularity of the Internet today, there are many security problems, such as malware (like the worm Flame), hacker attacks (like WikiLeaks continued attacks), personal privacy leaks (such as (password) user password leaks, etc.) Cloud storage Dropbox account stolen), operating system security (such as Android system) and prism gate events and other network security events. At present, the network security problem caused by information technology has risen to the national strategic height. Among many network security policies, identity authentication is the basis of network security. This paper analyzes the traditional static cryptographic identity authentication mechanism and its drawbacks, which make it unable to guarantee its security, so dynamic cryptographic authentication technology emerges as the times require. However, the traditional dynamic cryptographic authentication still has the defects of low efficiency and low security intensity. In this paper, the cryptography technology and related theory, digital signature technology and dynamic cryptographic authentication technology are deeply studied, and the improved dynamic cryptographic identity authentication mechanism is put forward in this paper. In this paper, the MD5 cryptographic algorithm, the improved ELGamal cryptographic algorithm and the login times are combined, and the various links involved in the algorithm are improved, such as the large prime generation stage in the ElGamal algorithm, the operation of the large power module. The database storage data and authentication mechanism are improved. A dynamic bidirectional authentication mechanism based on challenge / response is designed to make it more secure and efficient. Finally, the performance, security and accuracy are summarized and analyzed. Finally, the authentication mechanism is applied to the cloud platform.
【學(xué)位授予單位】：河北工業(yè)大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2014
【分類號】：TP393.08

【參考文獻(xiàn)】

相關(guān)期刊論文 前10條

1 張峰,王小妮,楊根興;一種安全的身份認(rèn)證系統(tǒng)——動態(tài)口令認(rèn)證系統(tǒng)[J];電腦開發(fā)與應(yīng)用;2002年04期

2 瞿白;;大數(shù)的生成和素性檢驗[J];電腦知識與技術(shù);2010年26期

3 阮衛(wèi)華;;云計算技術(shù)在互動電視的實(shí)踐與探索[J];電腦知識與技術(shù);2011年29期

4 孫磊;戴紫珊;郭錦娣;;云計算密鑰管理框架研究[J];電信科學(xué);2010年09期

5 張亮,張加亮;動態(tài)身份認(rèn)證方案及應(yīng)用[J];重慶大學(xué)學(xué)報(自然科學(xué)版);2004年07期

6 李育裕;韓堅華;;指紋與密碼體制相結(jié)合的認(rèn)證方案研究與實(shí)現(xiàn)[J];廣東工業(yè)大學(xué)學(xué)報;2010年01期

7 湯鵬志;李彪;;基于頻率的大素數(shù)高效生成算法[J];華東交通大學(xué)學(xué)報;2011年05期

8 夏培肅;量子計算[J];計算機(jī)研究與發(fā)展;2001年10期

9 葉錫君,吳國新,許勇,束坤;一次性口令認(rèn)證技術(shù)的分析與改進(jìn)[J];計算機(jī)工程;2000年09期

10 陳立志,李鳳華,戴英俠;基于動態(tài)口令的身份認(rèn)證機(jī)制及其安全性分析[J];計算機(jī)工程;2002年10期

本文編號：2127654