机构地区: 深圳大学信息工程学院
出 处: 《兰州交通大学学报》 2004年第1期87-90,共4页
摘 要: 针对传统秘密共享方法不能容忍入侵的弱点,介绍了一种基于主动秘密共享的安全容忍入侵方案,并给出了主动秘密共享的秘密管理协议和秘密产生协议.该方案具有在没有分发者的情况下重构秘密的优点,从而提供了强有效的方法抵御积极的敌手入侵.基于该方案提出一个容忍入侵的Internet存档服务器框架,该框架具有支持多用户和秘密可再用的特性,并且容易在HTTP上实现. A secure intrusion tolerant scheme with secret management protocols and secret generation protocols based on proactive secret sharing is proposed,countering the weakpoint of traditional secret sharing without intrusion tolerance.The management protocols include initialization, refreshment, distribution, encryption and decryption protocol. It is combined with generating implied secret protocol based on ElGamal encrypt method and refreshing share protocol based on proactive secret sharing, which conduces to generating public key cooperated with the user and implying corresponding secret key in (t, n) threshold method. The scheme has merit of reconstructing secrete without dealer, and provides an effective approach against active adversary intrusion consequently. An Internet archiving server frame is mentioned on the basis of the protocols in the scheme,which provides function of multiuser and secret reuse, and can be easily implemented on HTTP.
关 键 词: 计算机网络 网络安全 主动秘密共享 容忍入侵 秘密管理协议 秘密产生协议 消息加密协议
领 域: [自动化与计算机技术] [自动化与计算机技术]