本文選題：聯(lián)通 + 密碼鑰匙��； 參考：《電子科技大學(xué)》2014年碩士論文

【摘要】：近年來,隨著信息技術(shù)的發(fā)展,安全問題已經(jīng)越來越受到大家的重視,滲透到各個(gè)領(lǐng)域和行業(yè),其中聯(lián)通等電信行業(yè)也不例外。怎樣保證信息系統(tǒng)的安全也成研究熱點(diǎn),建立聯(lián)通安全認(rèn)證系統(tǒng)非常必要。本文通過對(duì)聯(lián)通現(xiàn)有狀況進(jìn)行分析,并結(jié)合現(xiàn)有技術(shù)討論,這些技術(shù)包括密碼體制、密碼鑰匙、安全認(rèn)證、PKI、基于身份的公鑰認(rèn)證,得出現(xiàn)在系統(tǒng)存在的問題。并在此基礎(chǔ)上,對(duì)系統(tǒng)的用戶管理、應(yīng)用服務(wù)管理認(rèn)證管理等功能需求分析。在非功能模塊中,對(duì)齊安全性、可靠性、擴(kuò)展性進(jìn)行分析。并根據(jù)分析結(jié)果搭建系統(tǒng)合理總體結(jié)構(gòu)及層次架構(gòu),對(duì)上述功能模塊進(jìn)行詳細(xì)介紹,如用戶管理、密碼鑰匙管理、認(rèn)證管理等的設(shè)計(jì)。針對(duì)整個(gè)系統(tǒng),對(duì)系統(tǒng)進(jìn)行部署,提供具體的搭建方案和設(shè)備,確定整個(gè)系統(tǒng)的實(shí)際模型。再針對(duì)設(shè)計(jì)好的認(rèn)證系統(tǒng),進(jìn)行應(yīng)用擴(kuò)展,將此安全認(rèn)證系統(tǒng)應(yīng)用寬帶漫游認(rèn)證和遠(yuǎn)程辦公中。并在兩個(gè)應(yīng)用中講述了現(xiàn)階段存在的不足和實(shí)現(xiàn)方法,設(shè)計(jì)了認(rèn)證的體系結(jié)構(gòu)和工作流程,通過遠(yuǎn)程控制功能提供了客戶端軟件智能升級(jí)、應(yīng)用自動(dòng)推送和密碼鑰匙解鎖,方便客戶使用,降低了維護(hù)成本。對(duì)最,后對(duì)本文進(jìn)行總結(jié),提出現(xiàn)有問題并對(duì)未來進(jìn)行展望,得出系統(tǒng)需要進(jìn)一步擴(kuò)展,密碼還需要向RSA2048位密鑰或者改用192位以上的ECC算法擴(kuò)展。經(jīng)設(shè)計(jì)論證此認(rèn)證安全認(rèn)系統(tǒng)搭建合理、安全可靠,取得了預(yù)期的效果,滿足聯(lián)通安全認(rèn)證系統(tǒng)的需求。
[Abstract]:In recent years, with the development of information technology, security issues have been paid more and more attention to, infiltrating into various fields and industries, including Unicom and other telecommunications industry is no exception.How to ensure the security of information system is also a hot topic. It is very necessary to establish the security authentication system of Unicom.This paper analyzes the current situation of Unicom and discusses the existing technologies, which include cryptography, cryptographic keys, security authentication PKI, identity-based public key authentication, and obtains the existing problems of the present system.On this basis, the system user management, application service management certification management and other functional requirements.In non-functional module, analyze the security, reliability and expansibility.According to the analysis results, the reasonable overall structure and hierarchical structure of the system are built, and the above function modules are introduced in detail, such as the design of user management, password key management, authentication management and so on.Aiming at the whole system, the system is deployed, the concrete construction scheme and equipment are provided, and the actual model of the whole system is determined.Then the security authentication system is applied to broadband roaming authentication and telecommuting.In the two applications, the shortcomings and implementation methods are described, the system structure and workflow of authentication are designed, the intelligent upgrade of client software is provided by remote control function, the application of automatic push and password key is unlocked.It is convenient for customers to use and reduces the cost of maintenance.Finally, this paper summarizes the existing problems and prospects for the future. It is concluded that the system needs further expansion, and the cryptography needs to be extended to the RSA2048 bit key or to the ECC algorithm with more than 192-bit bit.It is proved by design that the system is reasonable, safe and reliable, and the expected effect is obtained, which meets the requirement of Unicom security authentication system.
【學(xué)位授予單位】：電子科技大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2014
【分類號(hào)】：TP311.52;TN918.4
，

本文編號(hào)：1733290