【作者】 李海霞；

【导师】 潘成胜；

【作者基本信息】 沈阳理工大学 ， 计算机应用技术， 2011， 硕士

【摘要】 随着空间通信技术的发展,越来越多的用户开始使用空间通信系统来完成信息的交互。与地面通信系统相比,空间通信系统的覆盖范围更广,拓扑结构变化更加频繁,环境更加开放,数据在传输过程中更容易受到攻击;而且系统的计算资源和功率有限,链路带宽比较窄,缓存空间及处理能力都受到限制,传统的地面通信安全协议及加密算法并不适用于空间通信系统。为了保证空间数据在信道中安全、高效地传输,对空间通信数据的加解密策略进行研究是很有必要的。本文对CCSDS空间通信系统中传输数据的加密与解密策略进行了研究,通过对CCSDS提出的空间通信安全协议SCPS-SP与密码学中的典型加密算法进行深入分析,设计了一种基于SCPS-SP的混合加密策略,在不过多地增加额外通信开销的情况下,为空间链路中传输的数据单元提供较好的保护。本文分析了DES对称加密与RSA非对称加密两大类算法各自的优缺点,提出将两种算法混合使用于空间通信的方案,并通过分别测试DES、RSA与混合加密的加密结果与所耗费的时间来分析其安全性与运算效率,在理论上验证了混合加密算法在空间通信系统中的可行性;建立了基于SCPS-SP的空间通信数据安全传输模型,将SCPS-SP与混合加密算法融合在一起,对加解密策略的实施方案进行了详细的设计,其中包括安全关联SA的建立、RSA密钥的交换以及对传输数据单元的SCPS-SP加解密处理,该策略可以实现对空间链路中传输数据单元的机密性、完整性和认证三个方面的保护功能;对空间数据加解密策略进行了仿真实现,通过模拟非法用户对数据的截获、篡改与伪造攻击,验证了策略对数据的保护功能;测试了加密策略实施后空间信道的传输效率,并通过比较IPsec和SCPS-SP两种协议下混合加密的实施对系统性能造成的影响,验证了将基于SCPS-SP的混合加密策略应用于空间通信系统的优势。更多还原

【Abstract】 With the development of space communication technology, more and more users begin to send and receive information through the space wireless communication system. Relative to the ground network, the scope of space communication systems is more extensive, the diversification of topology is more frequent, the environment of system is more open, the assailment of outward is easier. Besides,the computation resource and power of space communication system is restricted,the bandwidth is narrow,the roomage and disposal power of buffer is limied,so the traditional ground network security protocol and encryption algorithm do not adapt to the space communication system. In order to ensure the data transmit safe and efficiently through the space channel, it is necessary to do deeper research about encryption/decryption strategy which is used in space communication system.This paper did deeper research about encryption and decryption strategy of the transmiting data on CCSDS space communication system,and designed a mixed encryption strategy based on SCPS-SP by deeply analysising SCPS-SP made by CCSDS and the typical encryption algorithm of cryptography. This strategy can provide better protection with much less additional communication overhead for the data units transmiting in the space link.This paper analyzed the advantages and disadvantages of DES symmetric encryption and RSA asymmetric encryption, proposed the project that making the two types of algorithm mixed to use in space communication,and verified the feasibility in theory by testing the encrypting results and cost time to analyze the safety and operational efficiency; established the space communicating data transfer model based on SCPS-SP, and made the mixed encryption algorithm and SCPS-SP together,carried out a detailed design for the implementation of encryption strategy,which including the establishment of security association(SA),RSA key exchange and the SCPS-SP encryption processing of space data units.This strategy can achieve the protection of confidentiality,integrity and authentication in three areas for the data units transmiting in space link;implemented this strategy,and validate the protective function for space data by simulating the illegal interception,tamper and forgery attack;tested the transmission efficiency of space channel, validate the advantages after implementing the encryption strategy in space communication system by comparing the impact for system performance which used mixed encryption algorithm both in IPsec and SCPS-SP.更多还原