东北大学学报(自然科学版)

东北大学学报(自然科学版) ›› 2003, Vol. 24 ›› Issue (5): 437-440.DOI: -

• 论著 • 上一篇    下一篇

基于Web服务的使能服务平台安全机制

董晓梅;王丽娜;于戈;申德荣   

  1. 东北大学信息科学与工程学院;东北大学信息科学与工程学院;东北大学信息科学与工程学院;东北大学信息科学与工程学院 辽宁沈阳 110004
  • 收稿日期:2013-06-24 修回日期:2013-06-24 出版日期:2003-05-15 发布日期:2013-06-24
  • 通讯作者: Dong, X.-M.
  • 作者简介:-
  • 基金资助:
    国家高技术研究发展计划CIMS主题项目(2001AA415210);;

Security mechanism of a web service-based enabling platform

Dong, Xiao-Mei (1); Wang, Li-Na (1); Yu, Ge (1); Shen, De-Rong (1)   

  1. (1) Sch. of Info. Sci. and Eng., Northeastern Univ., Shenyang 110004, China
  • Received:2013-06-24 Revised:2013-06-24 Online:2003-05-15 Published:2013-06-24
  • Contact: Dong, X.-M.
  • About author:-
  • Supported by:
    -

RichHTML

0

PDF (PC)

397

摘要: 介绍了一个在网络经济模式下,基于Web服务的、支持中小企业动态联盟的使能服务平台,并分析了其中面临的安全威胁,提出了一套适用该平台的安全机制·该安全机制可以为用户提供信息通信保密,访问权限控制,数字签名,身份认证,密钥管理以及入侵检测等安全性保障·其中使用了AES和混沌密码算法进行数据加密,RSA算法用于数字签名和密钥交换,Guillou Quisquater协议用于身份认证,一个基于RSA的秘密共享体制保存密钥·在入侵检测系统中,综合使用了神经网络,数据挖掘和计算机免疫方法·最后,分析了其安全性·

关键词: Web服务, 信息保密, 数字签名, 身份认证, 入侵检测

Abstract: An enabling service platform based on web services was introduced. This platform was designed for medium-small scale enterprises allying dynamically for their business processing. The security threats to it were analyzed. A set of security mechanism suited for the platform was proposed. According to the mechanism, the function such as information security, access control, digital signature, authentication and intrusion detection were provided. In the mechanism, AES and chaos-based stream cipher algorithms were applied for data encryption. RSA algorithm was applied for both digital signature and key exchange. Guillou-Quisquater protocol was applied for authentication and a RSA-based secrete-sharing scheme was proposed for key storage. Neural network, data mining and computer immunology-based methods were incorporated in the intrusion detection system. The security of the mechanism was analyzed.

中图分类号: