【摘要】：隨著移動互聯(lián)網(wǎng)以及智能終端的興起,在移動終端使用電子郵件成為了趨勢。但由于電子郵件是以明文方式進(jìn)行傳輸,容易被攻擊者截取,加上Android系統(tǒng)自身存在的安全隱患以及智能終端丟失后容易發(fā)生信息泄露等問題,給使用者造成了很大困擾,甚至?xí)斐筛鼑?yán)重的損失。本文就如何建立一個基于Android系統(tǒng)的安全郵件系統(tǒng)進(jìn)行了研究。 本文通過分析郵件系統(tǒng)的安全威脅以及加密技術(shù)原理,選取基于PKI的方案實現(xiàn)電子郵件的加密,其中選用RSA非對稱加密算法。本文提出一種基于Android平臺的安全郵件方案,通過建立具有可信任性的服務(wù)器進(jìn)行用戶認(rèn)證,以完成郵件的安全傳輸。其中在服務(wù)器與客戶端交互過程中,設(shè)計了基于非對稱加密與隨機(jī)密鑰的傳輸流程,確保私鑰安全的安全傳輸。本文在開源郵件客戶端的基礎(chǔ)之上,實現(xiàn)加密模塊完成證書請求、密鑰傳輸、郵件加密、解密等功能,同時對客戶端界面進(jìn)行簡化,提高其使用效率。最后經(jīng)過測試表明,該客戶端具有良好的安全性以及實用性。 該系統(tǒng)實現(xiàn)了端到端的電子郵件加密,并解決了移動終端上信息安全存儲的問題。該系統(tǒng)是在郵件系統(tǒng)之上進(jìn)行郵件加密,因此用戶不需要更換郵件服務(wù)器。目前該系統(tǒng)正在試運(yùn)行,通過安裝客戶端并在網(wǎng)絡(luò)環(huán)境下添加郵件賬戶即可自動分配密鑰,完成加密郵件的收發(fā)。
[Abstract]:With the rise of mobile Internet and intelligent terminals, the use of email in mobile terminals has become a trend. However, due to the transmission of e-mail in clear text, which is easy to be intercepted by the attacker, the security hidden danger of Android system itself and the information leakage after the intelligent terminal is lost, it has caused great trouble to the user. It can cause even more serious damage. This paper studies how to build a secure mail system based on Android system. By analyzing the security threat and the principle of encryption technology of mail system, this paper selects the scheme based on PKI to realize the encryption of email, among which RSA asymmetric encryption algorithm is chosen. In this paper, a secure mail scheme based on Android platform is proposed, which can authenticate users by building a trusted server to complete the secure mail transmission. In the course of the interaction between the server and the client, the transmission flow based on asymmetric encryption and random key is designed to ensure the secure transmission of the private key. Based on the open source mail client, this paper implements the encryption module to complete the functions of certificate request, key transmission, mail encryption and decryption. At the same time, it simplifies the client interface and improves its efficiency. Finally, the test shows that the client has good security and practicability. The system realizes end-to-end e-mail encryption and solves the problem of secure storage of information on mobile terminal. The system encrypts mail on the mail system, so users do not need to replace the mail server. At present, the system is in trial operation. By installing the client and adding the mail account in the network environment, the key can be automatically distributed to complete the sending and receiving of encrypted mail.
【學(xué)位授予單位】：北京郵電大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2015
【分類號】：TP393.098

【參考文獻(xiàn)】

相關(guān)期刊論文 前3條

1 ;One-way quantum identity authentication based on public key[J];Chinese Science Bulletin;2009年12期

2 韓雯;;AES加密算法分析及其安全性研究[J];石油工業(yè)計算機(jī)應(yīng)用;2008年02期

3 劉鵬躍;;電子郵件安全技術(shù)研究與解決方案[J];中國新通信;2013年20期

，

本文編號：2264053