a国产,中文字幕久久波多野结衣AV,欧美粗大猛烈老熟妇,女人av天堂

當前位置:主頁 > 管理論文 > 移動網絡論文 >

基于CPK的Web服務認證系統(tǒng)的研究

發(fā)布時間:2019-05-06 21:55
【摘要】:Web服務是自描述的、平臺無關的,它使用開放式標準,允許不同的應用程序進行交互。Web服務作為一種新興的信息技術,形成了一種新的基于互聯(lián)網的信息系統(tǒng)通用框架,允許用戶遠程調用不同信息系統(tǒng)的資源。正是Web服務的這些特點,使Web服務得到了廣泛的關注。隨著Web服務的廣泛應用,越來越多的威脅和缺陷被發(fā)現。攻擊者能夠檢測到Web服務的漏洞,并利用這些漏洞侵入系統(tǒng),竊取用戶的敏感信息,侵犯用戶的隱私權。 為了解決Web服務系統(tǒng)的安全認證問題,本文將組合公鑰(CPK)算法引入到Web服務驗證機制中,,在原CPK的基礎上,增加一對輔助密鑰矩陣,基本密鑰矩陣不變。用基本密鑰矩陣產生Web服務的密鑰,用基本密鑰矩陣和輔助密鑰矩陣產生調用Web服務的用戶密鑰。此外,重新定義了由用戶標識和標識的有效期組成的CPK標識,可以直接從標識中提取出有效期進行驗證,使驗證更方便。在SOAP頭中添加兩個自定義元素:用戶的CPK標識和簽名,并將改進的CPK應用到Web服務系統(tǒng)。理論分析表明,改進后的CPK密鑰滿足組合公鑰體制的性質,與組合公鑰有相同的性質,可以解決規(guī);J證的難題。同時,本算法可以抵抗組合公鑰算法中存在的選擇共謀攻擊、隨機共謀攻擊和線性共謀攻擊,安全性有所提高。 本文提出了一個單雙矩陣混合的組合公鑰算法并定義用戶的CPK標識,將改進的CPK算法引入到Web服務認證系統(tǒng)中,實現了Web服務的安全認證。
[Abstract]:Web services are self-describing, platform-independent and use open standards to allow different applications to interact. As an emerging information technology, web services form a new general framework for Internet-based information systems. Allows users to remotely invoke resources from different information systems. Because of these characteristics of Web service, Web service has been paid more and more attention. With the wide application of Web services, more and more threats and defects have been discovered. An attacker can detect Web service vulnerabilities and exploit these vulnerabilities to break into the system, steal sensitive information of users, and violate the privacy of users. In order to solve the security authentication problem of Web service system, the combined public key (CPK) algorithm is introduced into the Web service authentication mechanism. On the basis of the original CPK, a pair of auxiliary key matrix is added, and the basic key matrix is unchanged. The basic key matrix is used to generate the key of the Web service, and the basic key matrix and the auxiliary key matrix are used to generate the user key calling the Web service. In addition, the CPK identification is redefined, which is composed of the user identification and the validity period of the identity. The validity period can be extracted directly from the identity for verification, which makes the verification more convenient. Two custom elements are added to the SOAP header: the user's CPK identification and signature, and the improved CPK is applied to the Web service system. The theoretical analysis shows that the improved CPK key satisfies the properties of the combined public key system and has the same properties as the combined public key, which can solve the problem of large-scale authentication. At the same time, the proposed algorithm can resist the selective collusion attack, random collusion attack and linear collusion attack which exist in the combinatorial public key algorithm, and the security is improved. In this paper, a single and dual matrix hybrid combined public key algorithm is proposed, and the user's CPK identification is defined. The improved CPK algorithm is introduced into the Web service authentication system, and the security authentication of Web service is realized.
【學位授予單位】:天津大學
【學位級別】:碩士
【學位授予年份】:2014
【分類號】:TP393.09

【參考文獻】

相關期刊論文 前10條

1 邵春雨;蘇錦海;魏有國;周晶晶;;一種雙矩陣組合公鑰算法[J];電子學報;2011年03期

2 徐瑩;;面向電子商務Web服務的SOAP消息安全傳輸機制[J];中國管理信息化;2010年13期

3 孟偉;張t

本文編號:2470524


資料下載
論文發(fā)表

本文鏈接:http://www.wukwdryxk.cn/guanlilunwen/ydhl/2470524.html


Copyright(c)文論論文網All Rights Reserved | 網站地圖 |

版權申明:資料由用戶4c3cd***提供,本站僅收錄摘要或目錄,作者需要刪除請E-mail郵箱bigeng88@qq.com
a级毛片免费全部播放| 精品少妇一区二区三区视频 | 精品久久久久久久久久中出| 国内精品久久久久久影院| 激情一区二区三区| 伦理片电影网| 国产精品久久久AV色欲A| 日本亚洲国产一区二区三区| 久青草无码视频在线播放| 欧美熟妇在线| 人妻丰满熟妇AV无码久久| 亚洲春色在线视频| 中文字幕熟妇人妻在线视频| 一本一本大道香蕉久在线精品| 国产精品久久久久久亚洲影视| 视频库| 先锋影音av资源| 免费的黄色网| 久久无码免费精品| 精品无码国产自产拍在线观看蜜 | 免费激情网站| 永久免费AV无码网站在线观看 | 久久久久国产精品免费免费搜索| 日本xxx色视频在线观看| 亚洲中文字幕无码AV| 南丰县| 凉山| 色婷婷综合网| 夜夜性日日交xxx性hd| 久久超| 99久久99| 国产欧美日韩综合| jazzjazz国产精品一区二区| 91狠狠操| 人人碰| 久久动态图| 91综合| 白洁少妇第48章| 久久99| 被大肉楱征服的极品少妇| 中文字幕乱码一区二区三区|