| 基于SSL的数据安全传输系统的设计与实现 |
| |
| 引用本文: | 杨亚平,李伟琴.基于SSL的数据安全传输系统的设计与实现[J].北京航空航天大学学报,2001,27(4):469-473. |
| |
| 作者姓名: | 杨亚平 李伟琴 |
| |
| 作者单位: | 北京航空航天大学 计算机科学与工程系 |
| |
| 摘 要: | 安全套接层协议SSL(Secure Socket Layer)是用来保障数据安全传输的协议,目前已经成为工业标准.首先简要介绍了SSL协议,设计并实现了基于SSL的数据安全传输系统,它由两部分组成:SSL客户方安全通信代理CSP(Client Secure Proxy)和服务器方安全通信网关SSG(Server Secure Gateway),二者可以在Internet上建立一个安全通道,从而能够保障敏感数据的安全传输.讨论了系统的整体结构,并详细分析了实现中的若干关键技术,主要包括握手协议的实现、密钥的协商、记录层数据的分段与填充、会话重用等.
|
| 关 键 词: | 网络 安全 安全套接层协议SSL 密钥协商 |
| 文章编号: | 1001-5965(2001)04-0469-05 |
| 收稿时间: | 2000-09-20 |
| 修稿时间: | 2000年9月20日 |
Design and Implementation of SSL Based Secure Transmission System |
| |
| YANG Ya,LI Wei.Design and Implementation of SSL Based Secure Transmission System[J].Journal of Beijing University of Aeronautics and Astronautics,2001,27(4):469-473. |
| |
| Authors: | YANG Ya LI Wei |
| |
| Institution: | Beijing University of Aeronautics and Astronautics, Dept. of Computer Science and Engineering |
| |
| Abstract: | SSL protocol is a de facto standard to protect data transferred securely on the Internet. According to the SSL protocol, we design and implement a SSL based secure transmission system. It includes two parts: Client Secure Proxy(CSP) and Server Secure Gateway(SSG) through which a secure tunnel can be established between peers to protect sensitive data from being eavesdropped, altered and faked. This paper presents a detailed structure of this system and key techniques such as the implementation of handshake protocol, the negotiation of secret keys, the fragmentation and padding of record layer, session reuse etc. Our SSL Secure Proxy can establish an secure tunnel. |
| |
| Keywords: | electric networks safety Secure Socket Layer(SSL) secret negotiation |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《北京航空航天大学学报》浏览原始摘要信息 |
| 点击此处可从《北京航空航天大学学报》下载免费的PDF全文 |
