检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
作 者:王雄[1] 冯文浩 池亚平[1] WANG Xiong;FENG Wenhao;CHI Yaping(Beijing Electronic Science and Technology Institute,Beijing 100070,P.R.China)
出 处:《北京电子科技学院学报》2021年第4期18-24,共7页Journal of Beijing Electronic Science And Technology Institute
基 金:国家重点研发计划项目“私有云环境下服务化智能办公系统平台”(项目编号:2018YFB1004100);中央高校基本科研业务费项目“密码系统关键技术研究”(项目编号:328201909)资助。
摘 要:为解决云服务在用户隐私、数据保护等安全方面的问题,云密码服务应运而生。面对云服务中用户数量多、需求差异大等特点,云密码服务一般提供海量密钥。如何在云密码服务中结合虚拟密码机设计有效的密钥保护体系成为云密码服务中关键的问题。本文结合虚拟密码机之间的独立、隔离特性,设计以虚拟密码机中密钥库为核心的密钥保护体系。在该体系中,从虚拟密码机、云密码服务两个层面将海量密钥实现分层逐级保护,同时,对密钥的远程管理需求,设计基于密码技术的身份认证且建立安全通信通道。To solve security issues of cloud service in user privacy and data protection, cloud cryptography service has been created. For the characteristics of huge user quantity and great demand diversity in cloud services, cloud cryptography services generally provide massive keys. How to design an effective key protection scheme combining with the virtual cipher machine becomes a key issue in cloud cryptography service. In this paper, a key store in virtual cipher machine centered key protection scheme is designed according to the independence and the isolation between the virtual cipher machines. In the scheme, massive keys are protected hierarchically at the levels of virtual cipher machine and cloud cryptography service. Meanwhile, for the demand of remotely managing the keys, an identity authentication based on cryptography technology is designed and a secure communication channel is established.
分 类 号:TP309.7[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:3.143.17.164
