摘要
为保证秘密数据传输时不被泄露和篡改,设计了一种数据加密和数字签名方法.该方法将HASH函数、对称加密和非对称加密进行综合应用,并以算法的形式在物理隔离网闸中实现,在将涉密网中的数据传输至非涉密网的过程中用数据加密和数字签名,避免了信息的泄密和破坏.实验结果表明,与单纯的物理隔离网闸技术相比,加入加密和数字签名能够有效保证数据的保密性和完整性,对泄密数据传输延时几乎不产生影响.最后,根据具体应用场景说明了该方法的可行性.
In order to ensure confidential data not leaked and tampered in transmission, a kind of data encryption and digital signature method is proposed. HASH function, symmetric encryption and asymmetric encryption are integrated application in this method, and it is realized in physical isolation Gap in the form of algorithm, the data is encrypted and protected by digital signature while transmission from security-related network to non-security-related network by this method. The experimental results showed that compared with the simplex Gap technology, the new proposed en- cryption and digital signature can effectively guarantee the confidentiality and integrity of data, at the same time the influence of speed of data transmission after joined the encryption and digital signature were also analyzed. Finally, this method was illustrated effective in the specific scenario.
出处
《南通大学学报(自然科学版)》
CAS
2014年第1期18-23,共6页
Journal of Nantong University(Natural Science Edition)
基金
国家高技术产业项目(发改办高技〔2013〕1309号)
关键词
数据加密
完整性保护
网闸
数字签名
data encryption
integrity protection
Gap
digital signature
