CAJ | 학술논문

调研结果显示,大量移动终端消息通讯应用或未使用任何安全方案,或设计了存在安全缺陷的私有协议,或不当使用标准安全协议(如SSL/TLS),存在着机密性保护不足、消息源无法鉴别等不可信问题,因而并不适用于对安全性要求高的政务、商务和军事等平台.为了满足移动终端上高安全性消息传输的需求,文章设计了一种移动终端可信消息传输方案,对用户和移动终端进行接入控制,只有合规者才能安全接入消息服务;在移动终端、智能卡、可信中心服务器间多方认证,保证可访问消息的系统组件的合法性;消息传输使用公私钥和对称密码技术进行加解密,使用消息认证码进行完整性验证,保证消息机密性、完整性;用户使用智能卡对消息进行数字签名,保证消息源可鉴别与非否认.
조연결과현시,대량이동종단소식통신응용혹미사용임하안전방안,혹설계료존재안전결함적사유협의,혹불당사용표준안전협의(여SSL/TLS),존재착궤밀성보호불족、소식원무법감별등불가신문제,인이병불괄용우대안전성요구고적정무、상무화군사등평태.위료만족이동종단상고안전성소식전수적수구,문장설계료일충이동종단가신소식전수방안,대용호화이동종단진행접입공제,지유합규자재능안전접입소식복무;재이동종단、지능잡、가신중심복무기간다방인증,보증가방문소식적계통조건적합법성;소식전수사용공사약화대칭밀마기술진행가해밀,사용소식인증마진행완정성험증,보증소식궤밀성、완정성;용호사용지능잡대소식진행수자첨명,보증소식원가감별여비부인.
Research results show that a large number of mobile messaging applications either don't use any security solutions, or design proprietary protocol with lfaws, or inappropriately make use of standard security protocols (i.e. SSL/TLS), causing untrusted problems such as insufficient confidentiality protection and not verifiable message source, and therefore are not suitable for high security requirements of government affairs, business and military, etc. In order to meet the needs of mobile terminal high security message transmission, this paper designed a kind of mobile terminal trusted messaging scheme, which performs access control and only the unauthorized users and mobile terminals can access service securely. The identifications among mobile terminal, smartcard and trusted center server guarantee the legitimation of components which access the messages; public key and symmetric key cryptography encryption guarantees the conifdentiality, and MAC guarantees the integrity; subscribers use smartcards to sign message to ensure the message source is veriifable and non-deniable.