节点文献
结合数字证书技术解决P2P网络安全的设计与实现
In the P2P Network Numerical Certificate Technique within Safety
【作者】 陶莎;
【作者基本信息】 南昌大学 , 软件工程, 2007, 硕士
【摘要】 21世纪世界的变革天翻地覆,其中变化最为巨大,并引起世人关注和改变人们生活最多的就是计算机网络和信息技术,它们的迅猛发展促进了全社会信息化极大进步及现代化进展节奏的大步加快,同时也就随之产生了诸多新的安全问题及风险,并且这些安全和风险是不可定向、不可预知的、不间断产生的。其中,网络的安全性首当其冲,全球的信息远程交流现今大多数都是通过网络,而像计算机病毒、非法木马进入、后门被不法人员知晓、欺骗攻击、非法监听、非法信息共享及信息知识产权问题都是网络安全中的主要问题。在网络信息传递中,P2P技术(即Peer to Peer,称为对等连接或对等网络)已发展成为联网信息双向动态交流的运用最为频繁的信息控制技术,点对点技术的广泛使用,除容易大量造成计算机病毒、非法木马进入外,最多程度上引起地不良后果是成为了非法信息共享和违反信息知识产权问题的帮凶。而今,如果解决非法信息共享和违反信息知识产权问题成为世界网络技术维护者的头痛问题,现在,找到了一些解决方法,其一就是利用身份认证来解决。作为信息防护的第一道防线,身份认证是确保信息资源只能被合法用户所访问的重要保障。用好数字证书技术可以在一定程度上解决这些问题。身份认证是指计算机及网络系统确认操作者身份的过程。计算机系统和计算机网络是一个虚拟的数字世界,在这个数字世界中,一切信息包括用户的身份信息都是用一组特定的数据来表示的。如何保证以数字身份进行操作的操作者就是这个数字身份合法拥有者,也就是说保证操作者的物理身份与数字身份相对应,成为了一个重要的问题。P2P在信息的交流与传递中,容易造成信息非法使用、知识产权被窃取,经过多样分析,结合运用P2PACT系统,采用数字证书技术的来开发集中式身份认证系统,合理运用数字证书技术,通过对信息系统与之的衔接改造,较好地解决了P2P网络传递中用户身份识别的问题。该系统主要由身份认证模块和权限管理模块组成,所用技术为基于PKI技术的数字身份证书技术。该系统的投入使用,有效解决了如下问题:信息系统安全传输问题;信息系统全网范围的身份认证问题;关键操作抗抵赖问题;内部人员越级访问机密信息的恶意篡改问题;系统安全运行的管理问题;部门与部门之间的信息交流中可能带来的安全问题等。该系统已经已得到了试运行,结果显示该系统具有良好的安全性、可靠性、高效性、扩展性,较好的解决了P2P下载面临的网络安全的信息非法共享和盗用知识产权问题。
【Abstract】 Computer networks and the rapid development of information technology enterprises and promote the development of the information society of great progress, but also a lot of the resulting new security problems and risks. As an information system first line of defense, identity authentication information resources is to ensure that only legitimate users visit was an important guarantee.Authentication refers to the computer and network system operator confirmed the identity of the process. Computer systems and computer networks is a virtual digital world, in this digital world, all information, including the identity of the user with a group of information are specific to the data said. How to ensure that the digital identity of the operator is operating this figure as legitimate owners, ie guarantee the physical identity of the operator status with the corresponding figures have become an important issue.The technology based on digital certificates centralized authentication system, use of digital certificates technology, the information system through the interface with the transformation can solve the Network Information System user identification problems. The system is mainly composed authentication module and authority management modules, based on the techniques used by the PKI technology as digital certificate technology. The system put into use, effectively address the following issues: information transmission system security; Network Information System-wide scope of the identity problem; Non-repudiation key operational issues; Internal personnel leapfrog visit malicious tampering with confidential information; System security operational management issues; departments in the exchange of information between the possible security problems.The system platform for the Internet industry in a certain province has been test run showed that the system has good security, reliability, high efficiency, scalability, better information systems solve the security problems faced.
【Key words】 Peer-to-Peer; Network Security; Digital Certificate; Authentication;
- 【网络出版投稿人】 南昌大学 【网络出版年期】2008年 07期
- 【分类号】TP393.08
- 【被引频次】5
- 【下载频次】180