The article firstly analyses the security of ssl based on confidentiality , integrity and authentication , then provides some measures against current attacks on ssl protocol , and finally , describes the design and implementation of the ssl security proxy 本文结合ssl协议分别从保密性、数据完整性和身份认证三个方面分析了其安全性,针对目前存在的对ssl的攻击提出了相关的应对措施,并详细描述了ssl安全代理的设计思想与实现方法。
At the second place , we introduce two security technology - ipsec protocol and ssl protocol , including their work theory , characteristic , function , etc . at the last place , we research which treat and damage exist in the remote controlling , an how to prevent them from happening 首先讲述网络中存在的威胁,产生这些威胁的原因,以及如何预防这些威胁。接着阐述两种安全协议? ? ipsec协议和ssl协议,包括它们的作用,工作原理,特点等等。
In chapter 6 , a business example has been given to demonstrate the flow , the apmp platform ' s safety problem has been established , and the hardware and software solution for e - business has been introduced . the author makes use of the windows2000 server to build the secure exchange platform , and adopted some secure methods to the platform developed by asp 在第六章中,先给出了一个完整的商务实例来解说交易流程,并探讨了汽摩配商务平台的安全性问题,介绍了电子商务中安全问题的相关硬件软件解决方案,并且按照汽摩配行业商务平台的实际情况,利用windowszoooserver构架了基于ssl协议安全交易平台,并针对asp工具开发的平台采取了相应的安全措施。
And then the ssl protocol , set protocol and jsse api are given in the paper . finally through logically combined three forward terms , put forward the solving schemes of the web secure technology of the basic j2ee . at the same time , the web applied security frame on the basis of j2ee can be also provided in the paper 论文首先介绍了j2ee计算平台和j2ee技术;其次介绍了加密安全和数字签名;然后介绍了ssl协议、 set协议和jsseapi ;最后将三者有机地结合起来提出基于j2ee的web安全问题的解决方案,并提供了基于j2ee的web应用安全框架。
In this paper , it pointes out the disadvantage of those ssl - based payment systems and the e - wallet in a set payment system . furthermore , it describes a new model of the design and implementation of an ssl - based security proxy system and a server - based e - wallet system to improve those disadvantages 在分析这些特点基础之上,指出了目前国内在基于ssl协议的支付系统及set支付系统中电子钱包( set支付系统中持卡者端的软件)存在的不足,并分别设计与实现了一个基于ssl协议的安全代理系统及基于服务器的电子钱包系统。
Taking the research and development of integrated electronic commerce software gecis as background , this paper brings forward a framework model of form digital signature based on ssl protocol to provide higher security guarantee for ec . the whole task penetrates the developing process based on 3 - layer architecture . it uses architecture methods and technologies such as design pattern ect . moreover , it integrates uml and acme to establish software models 本文以集成电子商务软件gecis开发项目为背景,构造一个基于ssl协议的表单数字签名软件构架模型,为电子商务提供更高安全保障.整个研制工作贯穿基于三层体系结构的构件化软件开发过程,运用设计模式等软件体系结构方法和技术,综合使用统一建模语言uml和体系结构描述语言acme建立软件模型
In this paper , the belief logic system gny and it ' s related implementation tool spearii are utilized , ssl protocol is a focused instance , then the detailed analysis procedure from initial protocol model to various evolution protocol models is given , later the final evolution protocol model and ssl protocol are contrasted and thus the security analysis conclusion is drawn for ssl . during the analysis procedure two practical security authentication solutions are designed based on evolution protocol models 本文采用著名的信念逻辑gny逻辑系统及其相关的形式化工具spear ,以ssl协议为分析实例,详细阐述了从初始协议模型到各个进化协议模型的分析过程,并将最终的进化模型与ssl协议作比较,给出ssl协议的安全分析,同时在分析过程中以协议模型为基础设计了两个实用的安全认证方案。
On the theoretical basis above , we achieve an secure electronic exchange system based ssl protocol , which use object - oriented programming design , cryptography technology and com technology . we put forward a new model - scm ( secure component model ) in our system design , which realizes a two levels authentication system by using user ' s password authentication and the public key cryptographic digital signature authentication together ; which realizes stronger and selectable encryption algorithms ; which realizes information integrity and non - repudiation . at the same time , we explore a new way which combine com and cryptography technology to implement secure electronic exchange 依据上述理论基础,采用面向对象的程序设计方法,在ssl协议的基础上,探索了利用com组件技术实现一个安全电子交易的二次加解密组件系统。在对系统的设计中提出了安全组件模型( scm ) ,该模型提供两层认证机制和浏览器web服务器双向身份鉴别。即第一通过用户口令验证;第二利用双方的公钥数字证书对握手连接信息进行数字签名验证。
Next , this paper studies the pki technology , ssl protocol and smart card technology , and then put forward a security email solution , which solves some problems as follows : ( 1 ) protect email subject secret ( 2 ) realize email header safe transmission ( 3 ) security keys management then , this paper uses existing products ( wallgreat kmc ) to build a pki platform , and realize a model for this solution , which includes a secure email server and an email client 本文研究了pki技术、安全套接层ssl协议和智能卡技术,并在此基础上提出了一种安全邮件解决方案,旨在解决以下问题: ( 1 )邮件主题的保密性问题( 2 )邮件头的安全传输问题( 3 )密钥的安全管理问题接着,本文利用公司己有产品(华翔腾密钥管理中心)搭建pki平台,设计并实现了该解决方案的一个系统模型,该模型包括安全电子邮件服务器和客户端。
The ssl - based security proxy system breaks the blockage of the encrypt - key - length limitation set by some foreign products and provides the digital signature to the native secure e - commerce transaction . as well , the server - based e - wallet has the advantages of mobility > security > convenience > practicality comparing with the current e - wallets currently used in china 其中,建立在ssl协议基础之上的安全代理系统,打破了国外对国内加密密钥长度的限制,并提供了数字签名服务,能够很好的为我国电子商务的安全交易服务。
