论文标题:IHO S-63数据保护方案的安全性分析及改进
Security Analysis and Improvement for IHO S-63 Data Protection Scheme
论文作者
论文导师 陈恭亮,论文学位 硕士,论文专业 密码学
论文单位 上海交通大学,点击次数 510,论文页数 67页File Size6815K
2008-01-01论文网 http://www.lw23.com/lunwen_51616077/
Electronic Navigational Chart;; Blowfish;; DSA;; Data Integrity;; Forward Security
随着信息化时代的到来,电子海图将势必取代延用几个世纪的传统纸质海图。世界各国对电子海图及其应用系统都极为重视,国际海道测量组织IHO等相关国际组织从电子海图兴起之时就对其加以规范。 为保护电子海图信息避免被非授权复制,同时确保其来源真实性和数据完整性,IHO制定并颁布了S-63数据保护方案。该方案基于PRIMAR保护方案发展而来,采用Blowfish分组算法对海图信息加密保护,通过SHA-1哈希函数和CRC循环冗余校验确保传输数据的完整性,并采用DSA算法进行签名认证。 本论文首先对IHO S-63数据保护方案作了一个完整综述,主要侧重对四方参与者的责任权限分析,并对方案流程中的各个模块进行了总结归纳。其次本文从数据保密性、数据完整性、认证、不可否认性这四个安全服务方向分别对该数据保护方案做安全性分析研究。 本文最后对该方案进行了多处改进,使其获得更高的安全性。改进后,前向安全数字签名所提供的安全服务能减少密钥泄漏对系统安全所带来的影响:密钥被动泄漏时攻击者不可伪造之前时段的海图信息签名文件,密钥主动泄漏时数据服务方、管理方也不可抵赖原先签名;对单元密钥的公钥实现改进,使得即使在电子海图信息更新频繁的阶段,数据客户方也不需频繁地向数据服务方提交用户许可来获取单元许可;随机填充改进使得密文输出更加随机化;对安全参数M_KEY的改进能解决本方案中M_KEY密钥过于暴露的问题。
Traditional paper navigational chart which has been used for several years will be replaced with Electronic Navigational Chart (ENC) along with the arrival of information-based ages. International community extremely values ENC and its application systems (ECDIS etc.), International Hydrographic Organization (IHO) and related international organization make lots of specifications while ENC is rising. In order to protect ENC to avoid an unauthorized replication, to insure its source reliability and the data integrity in the meantime, IHO drew up and promulgated Data Protection Scheme (Special Publication No. 63). This scheme is based on the PRIMAR protection scheme, adopt Blowfish algorithm to encrypt, use Hash function (SHA-1) and Cyclic Redundancy Check to make sure the data integrity, and adopt DSA signature. This thesis makes an integrate analysis of IHO S-63 Data Protection Scheme firstly, lays emphasis on analysis of the participant"s responsibility and authorization, also gives a particular summary on each module in this scheme. Secondly the thesis does security analysis from the data confidentiality, integrity, authentication and non-repudiation respectively. There are several improvements in the end of thesis to make the scheme more safety. Forward security digital signature improvement could reduce the impact of key leakiness: When the key leaks passively, the attacker could not forge previous period signature of information. When the key leaks actively, the Data Server and Scheme Administrator could not deny the original signature; after cell key algorithm improvement, Data Client do not need submit user permit frequently from Data Server to get cell permit, although ENC information is updated much more frequently; We could get much more random cipher text from random filling; We also makes an improvement for M_KEY issue.
|
