一种实用电子商务安全体系结构设计

电子商务的安全问题已经成为制约其发展的关键,为了提高电子商务的安全性,探讨了电子商务安全技术体系结构,揭示了各安全技术间的层次关系,创造性的提出了一种实用的电子商务安全体系,该体系基于技术手段,主要包括防火墙技术、对称加密技术、非对称加密技术、数字签名、身份认证等技术。从全局上把握了电子商务安全机制,并重点介绍了其中的核心技术。     

基于数据库的安全保护问题

介绍了如何设置保存访问数据库的密码口令和对数据库加密以达到保护数据库安全的目的。     

图像加密技术及其进展

在图像传输的过程中,图像加密技术起着重要作用。本文介绍了目前常用的图像加密方法、加密技术的发展现状,同时还介绍了图像加密方面的新技术、新方法,并阐述了图像加密技术的发展趋势。     

A novel software key container in on-line media services

Due to the explosive growth of the Internet and the pervasion of multimedia, protection of IP rights of digital content in transactions induces people’s concerns. For fee-based media services, data encryption may be the best solution for protection of the media. The encryption (decryption) keys placement may be a trivial but crucial issue for users. It is a significant issue that how to practically protect user’s key with the password-based cryptographic scheme and at different security levels. Nowadays, key container storing user’s key can be implemented by hardware or software-only. Unfortunately, the hardware key containers require expensive infrastructure; On the other hand, the software-only key containers are either insecure or impractical. Moreover, both of the hardware and software just store user’s key with the single security level. To solve these problems, we propose a novel software key container in on-line media services that can provide an adaptively secure and practical solution to protect user’s key. We use a human-trapdoor distortion function and symmetric cipher to protect user’s key in our key container so that it is computationally infeasible to break the system by using machine attack alone. The idea is to ensure that people must participate to verify each guessed password in the attack. User can adjust the security level of container according to the security requirement. Therefore, the attacker cannot succeed to extract user’s key within a reasonable time and budget.     

DES算法原理及改进

该文深入地剖析了des算法的原理及其优缺点,提出了一个DES改进方案,该方案具有安全性好、速度快、效率高的优点。     

带关键词检索的公钥加密方案

针对现有的带关键词检索的公钥加密(PEKS)方案中的大量对运算需要消耗较多时间,且都存在不能抵抗重放攻击的问题,在研究PEKS的基础上,提出一种高效的带关键词检索的公钥加密方案。与现有的PEKS方案相比,该方案保留了现有PEKS方案的优点,能有效地抵抗重放攻击。     

SQL Server的数据库加密技术的研究与实现

数据库加密就是对数据库的文件或数据进行加密,数据加密后以密文方式存储,即使被窃取、被拷贝,机密数据也不会被敌对方获取。本文介绍了SQL Server数据库常见的安全问题和数据库加密技术,提出了一种对于数据库字段的加密技术。     

基于三维空间的图像加密算法

为了实现图像安全,快速加密,利用了图像像素可以插入到相邻像素之间以及拉伸折叠的思想设计了一种基于三维坐标的图像加密算法。     

无人机遥控指令加密方式的研究

介绍了无人机遥控指令的特点,提出对遥控指令进行加密的方式以实现更高的安全性;设计了基于序列密码的一次一密加密方案,通过分析遥控指令加解密的过程,给出了一种遥控指令的帧结构,更好地满足遥控指令高安全性、高可靠性的需求。     

A Convertible Multi-Authenticated Encryption scheme for group communications

Recently, Wu et al. proposed a Convertible Multi-Authenticated Encryption (CMAE) scheme, which allows a signing group with multiple signers to generate a multi-authenticated ciphertext signature on the chosen message so that only a designated verifier can recover and verify the message. In case of later dispute, the verifier can convert the multi-authenticated ciphertext signature into an ordinary one that can be verified by anyone. In this study, a CMAE scheme for group communications is proposed. This is presented by first reviewing the concepts of group-oriented encryption schemes and the merits of Wu et al.’s scheme. This shows that not only can a multi-authenticated ciphertext signature be generated by a signing group, but also the message can be recovered and verified by a verifying group with multiple verifiers. The security of the proposed scheme is based solely on the DDH problem, which provides higher security confidence than using the CDH problem in Wu et al.’s CMAE scheme.