摘要
通过改变对称密钥体系中用户与密钥分发中心(KDC)之间密钥的组织形式,采用在用户和各个KDC元之间设置不同的密钥加密密钥,以及在一次数据通信前运用多个不同的密钥加密密钥来申请数据密钥的不同部分,然后再拼接成完整的数据密钥,运用该方法来提高整个系统的安全容错性,降低密钥泄露造成的危害,并对其进行安全性能分析。分析结果表明,该文提出的方法增强了整个系统的安全性。
With the widespread use of the Internet, security becomes a critical problem in various applications. In a security system, keys play a fundamental roll. In the paper, the keys management between users and KDC (key distribution center) is changed to improve the security tolerance of system and to alleviate the danger of leaking key. Two methods are applied in the paper. One is that different key encrypting keys are applied between users and different KDC units; the other is that many key encrypting keys are applied for a data key before data communication to get the different part of the data key. Then their performances are analyzed. Results of the analysis prove the methods proposed in the paper in favor of achieve above motive.
出处
《电子科技大学学报》
EI
CAS
CSCD
北大核心
2001年第6期596-599,共4页
Journal of University of Electronic Science and Technology of China
