本文選題：即時(shí)消息通信系統(tǒng) + 認(rèn)證密鑰交換協(xié)議�。� 參考：《上海交通大學(xué)》2014年碩士論文

【摘要】：本課題主要針對(duì)如何在即時(shí)消息通信系統(tǒng)中進(jìn)行安全通信的問(wèn)題進(jìn)行了研究和探討。本文在分析即時(shí)消息通信系統(tǒng)安全模型的基礎(chǔ)上指出,當(dāng)前即時(shí)消息通信系統(tǒng)面臨著多種的安全威脅。為了解決即時(shí)消息通信系統(tǒng)安全通信的問(wèn)題,完成即時(shí)消息的安全、可靠傳遞,本文研究并實(shí)現(xiàn)了一種運(yùn)行于應(yīng)用層、能夠提供端到端安全性的消息加密協(xié)議。該協(xié)議工作于TCP/IP協(xié)議的應(yīng)用層,能夠?yàn)榧磿r(shí)通信用戶(hù)提供身份認(rèn)證、消息加密等安全服務(wù)。身份認(rèn)證與密鑰交換是所有安全協(xié)議的基礎(chǔ)。在使用一般的認(rèn)證密鑰交換協(xié)議過(guò)程中,要么會(huì)給即時(shí)消息通信用戶(hù)增加不必要的使用困難,要么容易受到安全攻擊。為了平衡以上兩個(gè)問(wèn)題,本文在百萬(wàn)富翁算法的基礎(chǔ)上,提出了一種基于共享信息的口令認(rèn)證密鑰交換協(xié)議。該協(xié)議能夠有效抵御常見(jiàn)的中間人攻擊和離線字典攻擊,同時(shí)在使用上不會(huì)給用戶(hù)帶來(lái)額外的負(fù)擔(dān)。在消息傳輸?shù)陌踩苑矫?本文又設(shè)計(jì)并提出了一種消息加密協(xié)議。該協(xié)議通過(guò)對(duì)明文消息的重新封裝和編碼,能夠?yàn)榧皶r(shí)消息通信系統(tǒng)提供加密、簽名等安全服務(wù)。本文對(duì)該協(xié)議的消息格式、編碼規(guī)則以及安全算法進(jìn)行了詳細(xì)的闡述,并在此基礎(chǔ)上,對(duì)協(xié)議進(jìn)行了軟件實(shí)現(xiàn)。最后,本文對(duì)已經(jīng)應(yīng)用了該安全協(xié)議的一個(gè)企業(yè)及時(shí)消息通信系統(tǒng)進(jìn)行了介紹。并基于該系統(tǒng),對(duì)本文提出的安全機(jī)制進(jìn)行了測(cè)試和驗(yàn)證,證明該安全機(jī)制具有一定的可行性和可用性。
[Abstract]:This paper mainly discusses how to secure communication in instant message communication system.Based on the analysis of the security model of the instant messaging system, this paper points out that the instant messaging system is facing a variety of security threats.In order to solve the problem of secure communication in instant messaging system and complete the secure and reliable delivery of instant message, this paper studies and implements a message encryption protocol which runs in the application layer and can provide end-to-end security.The protocol works in the application layer of TCP/IP protocol and can provide security services such as authentication and message encryption for instant messaging users.Authentication and key exchange are the basis of all security protocols.In the process of using general authentication key exchange protocol, the users of instant messaging are either unnecessarily difficult to use or vulnerable to security attacks.In order to balance the above two problems, this paper proposes a password authentication key exchange protocol based on shared information based on the millionaire algorithm.The protocol can effectively resist common man-in-the-middle attacks and offline dictionary attacks, and does not impose additional burden on users.In the aspect of message transmission security, this paper designs and proposes a message encryption protocol.This protocol can provide encryption, signature and other security services for timely message communication system by re-encapsulating and encoding clear text messages.In this paper, the message format, encoding rules and security algorithm of the protocol are described in detail, and on the basis of this, the protocol is implemented by software.Finally, this paper introduces an enterprise timely message communication system which has applied the security protocol.Based on the system, the security mechanism proposed in this paper is tested and verified, and it is proved that the security mechanism is feasible and available.
【學(xué)位授予單位】：上海交通大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2014
【分類(lèi)號(hào)】：TN918

【參考文獻(xiàn)】

相關(guān)期刊論文 前3條

1 徐俊;;基于百萬(wàn)富翁算法的口令認(rèn)證密鑰交換協(xié)議[J];電腦與信息技術(shù);2013年02期

2 徐向陽(yáng);韋昌法;;基于即時(shí)通信的安全保護(hù)策略[J];計(jì)算機(jī)工程;2007年21期

3 張德君;;即時(shí)通信系統(tǒng)的安全目標(biāo)[J];科技創(chuàng)新導(dǎo)報(bào);2011年15期

相關(guān)碩士學(xué)位論文 前1條

1 陳文濤;基于Jabber協(xié)議的嵌入式即時(shí)通信客戶(hù)端的設(shè)計(jì)[D];電子科技大學(xué);2008年

，

本文編號(hào)：1734011