CAJ | 학술논문

针对安卓手机之间安全传输敏感数据的问题，利用智能密码钥匙(SDKEY)提供的安全计算环境，提出了适用于安卓系统的解决方案。首先设计了一种利用 SDKEY 和个人识别密码(PIN)用于开机登陆和锁屏登陆的双重身份认证机制；其次，利用 SDKEY 的加解密算法实现了对系统里的敏感短信加密存储和加密传输的解决办法；最后，针对安卓手机间的数据传输提出了一种透明加密传输方案，同时还设计了2种密钥传递机制来解决密钥交换的问题。基于上述方案开发了一种原型系统，并进行了大量的系统性能测试和理论安全性分析。测试结果表明，该方案具备高性能标准，实现了增强安卓系统安全性的要求。
침대안탁수궤지간안전전수민감수거적문제，이용지능밀마약시(SDKEY)제공적안전계산배경，제출료괄용우안탁계통적해결방안。수선설계료일충이용 SDKEY 화개인식별밀마(PIN)용우개궤등륙화쇄병등륙적쌍중신빈인증궤제；기차，이용 SDKEY 적가해밀산법실현료대계통리적민감단신가밀존저화가밀전수적해결판법；최후，침대안탁수궤간적수거전수제출료일충투명가밀전수방안，동시환설계료2충밀약전체궤제래해결밀약교환적문제。기우상술방안개발료일충원형계통，병진행료대량적계통성능측시화이론안전성분석。측시결과표명，해방안구비고성능표준，실현료증강안탁계통안전성적요구。
To resolve the more and more serious problems of sensitive data transmission for Android smart-phone,a method for secure data transmission was studied and presented by adopting secure computation environment of secure digital key (SDKEY).Firstly,a kind of dual-authentication scheme for login using SDKEY and personal identification number(PIN)was designed.Secondly,a solution on transparent en-cryption storage and transmission for sensitive SMS was proposed.Finally,a method of transparent en-cryption transmission between Android smartphones was presented,and several kinds of key mechanism for different scenarios were designed to implement key exchange.In this paper a prototype system based on the above solution was developed,its performance verified by the experimental tests,and its security ana-lyzed in detailed.The final results show that the security of prototype system with high performance can be improved by adopting SDKEY.