【摘要】：移動(dòng)代理是一種新的適合大規(guī)模分布式應(yīng)用的智能程序,在主動(dòng)網(wǎng)絡(luò)、網(wǎng)絡(luò)管理、電子商務(wù)等領(lǐng)域有著廣闊的應(yīng)用前景。目前,移動(dòng)代理的安全性是一個(gè)亟需解決的問(wèn)題,如何保護(hù)移動(dòng)代理不被惡意主機(jī)篡改及其所攜帶的信息不被泄漏是研究的難點(diǎn)。同態(tài)加密是基于數(shù)學(xué)難題,計(jì)算復(fù)雜性理論的密碼學(xué)技術(shù)。它不同于傳統(tǒng)的數(shù)據(jù)加密,允許在沒(méi)有解密算法和解密密鑰的條件下對(duì)加密的數(shù)據(jù)進(jìn)行運(yùn)算,解密后的結(jié)果和在明文狀態(tài)下直接計(jì)算的結(jié)果相同。基于同態(tài)加密的移動(dòng)代理保護(hù)方法是移動(dòng)代理主動(dòng)保護(hù)技術(shù)的一個(gè)有效手段。假設(shè)移動(dòng)代理是由算術(shù)運(yùn)算構(gòu)成,如果有一個(gè)安全的同態(tài)加密方案能夠?qū)崿F(xiàn)所有運(yùn)算的加密計(jì)算,則移動(dòng)代理的保密計(jì)算問(wèn)題將得到有效解決。目前,對(duì)同態(tài)加密的研究還處于起步階段,存在以下不足:同態(tài)加密只限于對(duì)整數(shù)進(jìn)行加密;對(duì)加密后的密文小數(shù)、大小和正負(fù)信息進(jìn)行分析,有可能判斷出明文小數(shù)、大小和正負(fù)信息,導(dǎo)致明文信息的泄漏。本文針對(duì)以上不足進(jìn)行了研究,取得研究成果如下:提出基于ElGamal的實(shí)數(shù)定義域公鑰同態(tài)加密算法。引入整數(shù)向?qū)崝?shù)同態(tài)映射的表示方法,實(shí)現(xiàn)了初等運(yùn)算的保密計(jì)算,克服了加密后的密文會(huì)泄漏明文的小數(shù)、符號(hào)和大小關(guān)系的不足。該算法解決了EIGamal同態(tài)加密算法只能加密正整數(shù)的問(wèn)題,可以抵抗已知明文攻擊,不會(huì)泄漏小數(shù)和正負(fù)的信息,實(shí)現(xiàn)了非交互保密計(jì)算;提出了基于組合函數(shù)和加乘同態(tài)加密技術(shù)的移動(dòng)代理保護(hù)策略。研究策略起源于由Sander和Tschudin提出的同態(tài)密碼學(xué)思想,本文用組合函數(shù)和加乘同態(tài)方案來(lái)加密移動(dòng)代理,加密的移動(dòng)代理能夠在任何主機(jī)上運(yùn)行而不需解密,真正達(dá)到了移動(dòng)代理的保護(hù)目的,并對(duì)方案的安全性進(jìn)行了驗(yàn)證,證明了方案的可行性和有效性。
[Abstract]:Mobile agent is a new intelligent program suitable for large-scale distributed applications, which has a broad application prospect in active network, network management, electronic commerce and other fields. At present, the security of mobile agent is an urgent problem to be solved. How to protect mobile agent from malicious host tampering and the information it carries is difficult to be studied. Homomorphic encryption is a cryptographic technique based on mathematical problems and computational complexity theory. It is different from traditional data encryption and allows the operation of encrypted data without decryption algorithm and decryption key. The result after decryption is the same as that calculated directly in plaintext state. The method of mobile agent protection based on homomorphic encryption is an effective method for mobile agent active protection. Assuming that the mobile agent is composed of arithmetic operations, if there is a secure homomorphic encryption scheme that can realize the encryption computation of all operations, the secure computing problem of mobile agents will be solved effectively. At present, the research on homomorphic encryption is still in its infancy, which has the following shortcomings: homomorphic encryption is limited to integer encryption; By analyzing the decimal number, size and positive and negative information of encrypted ciphertext, it is possible to determine the decimal number, size and positive and negative information of plaintext, which leads to the leakage of plaintext information. The research results are as follows: a real number domain public-key homomorphic encryption algorithm based on ElGamal is proposed in this paper. The representation of integer to real homomorphism mapping is introduced to realize the secret calculation of elementary operation, which overcomes the deficiency that encrypted ciphertext will leak the decimal number, symbol and size relation of plaintext. This algorithm solves the problem that the EIGamal homomorphic encryption algorithm can only encrypt positive integers, can resist the known plaintext attacks, does not leak the information of decimal and positive and negative, and realizes the non-interactive security calculation. A mobile agent protection strategy based on combination function and multiplicative homomorphism encryption is proposed. The research strategy originates from the homomorphic cryptography thought proposed by Sander and Tschudin. In this paper, we use combination function and multiplicative homomorphism scheme to encrypt mobile agent, which can run on any host without decryption. The protection of mobile agent is achieved, and the security of the scheme is verified, which proves the feasibility and effectiveness of the scheme.
【學(xué)位授予單位】：沈陽(yáng)航空航天大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2016
【分類(lèi)號(hào)】：TP309.7

【參考文獻(xiàn)】

相關(guān)期刊論文 前10條

1 古春生;;近似理想格上的全同態(tài)加密方案[J];軟件學(xué)報(bào);2015年10期

2 曹燁;;ElGamal數(shù)字簽名方案的安全性分析及改進(jìn)[J];沈陽(yáng)理工大學(xué)學(xué)報(bào);2015年03期

3 李少鯤;曹峰;;基于全同態(tài)加密的可證數(shù)據(jù)持有方案[J];信息工程大學(xué)學(xué)報(bào);2015年03期

4 李浪;余孝忠;楊婭瓊;鄭蘭蘭;;同態(tài)加密研究進(jìn)展綜述[J];計(jì)算機(jī)應(yīng)用研究;2015年11期

5 夏超;仲紅;石潤(rùn)華;;基于同態(tài)加密技術(shù)的安全多方乘積協(xié)議[J];計(jì)算機(jī)工程與應(yīng)用;2015年01期

6 李淑敬;李林國(guó);;基于Visual Foxpro的EIGamal數(shù)字簽名算法[J];吉首大學(xué)學(xué)報(bào)(自然科學(xué)版);2013年05期

7 陳志偉;杜敏;楊亞濤;李子臣;;基于RSA和Paillier的同態(tài)云計(jì)算方案[J];計(jì)算機(jī)工程;2013年07期

8 林如磊;王箭;杜賀;;整數(shù)上的全同態(tài)加密方案的改進(jìn)[J];計(jì)算機(jī)應(yīng)用研究;2013年05期

9 吳杰宏;張磊;張坡;石祥濱;;移動(dòng)代理同態(tài)加密主動(dòng)保護(hù)技術(shù)研究[J];吉林大學(xué)學(xué)報(bào)(工學(xué)版);2013年S1期

10 吳杰宏;郭曉淳;石祥濱;;基于交叉循環(huán)和改變數(shù)據(jù)關(guān)聯(lián)的移動(dòng)代理迷亂保護(hù)方案[J];微電子學(xué)與計(jì)算機(jī);2013年03期

，

本文編號(hào)：2323643