摘要
针对安卓手机之间安全传输敏感数据的问题,利用智能密码钥匙(SDKEY)提供的安全计算环境,提出了适用于安卓系统的解决方案。首先设计了一种利用SDKEY和个人识别密码(PIN)用于开机登陆和锁屏登陆的双重身份认证机制;其次,利用SDKEY的加解密算法实现了对系统里的敏感短信加密存储和加密传输的解决办法;最后,针对安卓手机间的数据传输提出了一种透明加密传输方案,同时还设计了2种密钥传递机制来解决密钥交换的问题。基于上述方案开发了一种原型系统,并进行了大量的系统性能测试和理论安全性分析。测试结果表明,该方案具备高性能标准,实现了增强安卓系统安全性的要求。
To resolve the more and more serious problems of sensitive data transmission for Android smart- phone, a method for secure data transmission was studied and presented by adopting secure computation environment of secure digital key (SDKEY). Firstly, a kind of dual-authentication scheme for login using SDKEY and personal identification number(PIN) was designed. Secondly, a solution on transparent en- cryption storage and transmission for sensitive SMS was proposed. Finally, a method of transparent en- cryption transmission between Android smartphones was presented, and several kinds of key mechanism for different scenarios were designed to implement key exchange. In this paper a prototype system based on the above solution was developed, its performance verified by the experimental tests, and its security ana- lyzed in detailed. The final results show that the security of prototype system with high performance can be improved by adopting SDKEY.
出处
《解放军理工大学学报(自然科学版)》
EI
北大核心
2015年第2期114-119,共6页
Journal of PLA University of Science and Technology(Natural Science Edition)
基金
新世纪优秀人才支持计划资助项目(NCET-11-0565)
长江学者和创新团队发展计划资助项目(IRT201206)
中央高校基本科研业务费专项资金资助项目(2015JBM041
2012JBZ010)
北京高校青年英才计划资助项目(YETP0548)
关键词
信息安全
智能密码钥匙
安全传输
身份认证
密钥交换
information security
SDKEY
secure transmission
identity authentication
key exchange
