基于DANE的电子邮件安全研究  被引量:3

Email Security Research Based on DANE

在线阅读下载全文

作  者:柏宗超 姚健康[2] 孔宁[2] BAI Zong-Chao;YAO Jian-Kang;KONG Ning(Computer Network Information Center, Chinese Academy of Sciences, Beijing 100190, China;China Interact Network Information Center, Beijing 100190, China;University of Chinese Academy of Sciences, Beijing 100049, China)

机构地区:[1]中国科学院计算机网络信息中心,北京100190 [2]中国互联网络信息中心,北京100190 [3]中国科学院大学,北京100049

出  处:《计算机系统应用》2018年第7期71-77,共7页Computer Systems & Applications

基  金:发改委288域名安全专项~~

摘  要:电子邮件是当今重要的通信工具,也是网络攻击的主要途径之一.由于近年来CA机构有意无意的证书误签发、邮件中间人降级攻击、基于DNS的域名实体认证协议DANE的提出,当前邮件协议的改进及邮件隐私和安全有了新进展.从邮件加密和验证角度梳理了当前广泛使用的邮件协议,分析了其优缺点,归纳了邮件协议的最新研究进展、DANE对当前邮件协议的改进及其不足,提出了基于DANE的安全邮件系统架构.最后对基于DANE的邮件系统的发展方向进行了总结与展望.Email is today's important communication tool,but it is also one of the main ways of cyber attack.As a result of certificates mistakenly issued by CA agency,man-in-the-middle downgrade attack,and the proposal of DNS-based Authentication of Named Entities(DANE),new progress has been made on the improvement of the current email protocol and the security of email.This study combs the widely used email protocol from the point of view of email encryption and verification,analyzes its advantages and disadvantages,summarizes the latest research progress of email protocols and the improvement of current email protocol,and proposes a secure email system architecture based on DANE.Finally,the development direction of DANE-based email system is summarized and prospected.

关 键 词:电子邮件 安全 STARTTLS SPF DKIM DMARC DANE 

分 类 号:TP393.098[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象