本文選題：即時消息通信系統(tǒng) + 認證密鑰交換協(xié)議�。� 參考：《上海交通大學》2014年碩士論文

【摘要】：本課題主要針對如何在即時消息通信系統(tǒng)中進行安全通信的問題進行了研究和探討。本文在分析即時消息通信系統(tǒng)安全模型的基礎上指出,當前即時消息通信系統(tǒng)面臨著多種的安全威脅。為了解決即時消息通信系統(tǒng)安全通信的問題,完成即時消息的安全、可靠傳遞,本文研究并實現(xiàn)了一種運行于應用層、能夠提供端到端安全性的消息加密協(xié)議。該協(xié)議工作于TCP/IP協(xié)議的應用層,能夠為即時通信用戶提供身份認證、消息加密等安全服務。身份認證與密鑰交換是所有安全協(xié)議的基礎。在使用一般的認證密鑰交換協(xié)議過程中,要么會給即時消息通信用戶增加不必要的使用困難,要么容易受到安全攻擊。為了平衡以上兩個問題,本文在百萬富翁算法的基礎上,提出了一種基于共享信息的口令認證密鑰交換協(xié)議。該協(xié)議能夠有效抵御常見的中間人攻擊和離線字典攻擊,同時在使用上不會給用戶帶來額外的負擔。在消息傳輸?shù)陌踩苑矫?本文又設計并提出了一種消息加密協(xié)議。該協(xié)議通過對明文消息的重新封裝和編碼,能夠為及時消息通信系統(tǒng)提供加密、簽名等安全服務。本文對該協(xié)議的消息格式、編碼規(guī)則以及安全算法進行了詳細的闡述,并在此基礎上,對協(xié)議進行了軟件實現(xiàn)。最后,本文對已經應用了該安全協(xié)議的一個企業(yè)及時消息通信系統(tǒng)進行了介紹。并基于該系統(tǒng),對本文提出的安全機制進行了測試和驗證,證明該安全機制具有一定的可行性和可用性。
[Abstract]:This paper mainly discusses how to secure communication in instant message communication system.Based on the analysis of the security model of the instant messaging system, this paper points out that the instant messaging system is facing a variety of security threats.In order to solve the problem of secure communication in instant messaging system and complete the secure and reliable delivery of instant message, this paper studies and implements a message encryption protocol which runs in the application layer and can provide end-to-end security.The protocol works in the application layer of TCP/IP protocol and can provide security services such as authentication and message encryption for instant messaging users.Authentication and key exchange are the basis of all security protocols.In the process of using general authentication key exchange protocol, the users of instant messaging are either unnecessarily difficult to use or vulnerable to security attacks.In order to balance the above two problems, this paper proposes a password authentication key exchange protocol based on shared information based on the millionaire algorithm.The protocol can effectively resist common man-in-the-middle attacks and offline dictionary attacks, and does not impose additional burden on users.In the aspect of message transmission security, this paper designs and proposes a message encryption protocol.This protocol can provide encryption, signature and other security services for timely message communication system by re-encapsulating and encoding clear text messages.In this paper, the message format, encoding rules and security algorithm of the protocol are described in detail, and on the basis of this, the protocol is implemented by software.Finally, this paper introduces an enterprise timely message communication system which has applied the security protocol.Based on the system, the security mechanism proposed in this paper is tested and verified, and it is proved that the security mechanism is feasible and available.
【學位授予單位】：上海交通大學
【學位級別】：碩士
【學位授予年份】：2014
【分類號】：TN918

【參考文獻】

相關期刊論文 前3條

1 徐俊;;基于百萬富翁算法的口令認證密鑰交換協(xié)議[J];電腦與信息技術;2013年02期

2 徐向陽;韋昌法;;基于即時通信的安全保護策略[J];計算機工程;2007年21期

3 張德君;;即時通信系統(tǒng)的安全目標[J];科技創(chuàng)新導報;2011年15期

相關碩士學位論文 前1條

1 陳文濤;基于Jabber協(xié)議的嵌入式即時通信客戶端的設計[D];電子科技大學;2008年

，

本文編號：1734011