摘要
为提高基于无线APN虚拟专网的电压监测装置信息安全接入规范中的密钥协商协议和数据加密传输协议的安全性,对其进行改进。在密钥协商请求报文和应答报文中添加时间戳,密钥协商确认报文添加时间戳与报文签名,数据加密报文添加时间戳和报文签名的方式提升了协议的安全性。对改进后的密钥协商协议与数据加密传输协议进行安全性分析,分析结果表明,改进后的协议可以抵抗消息重放攻击、消息篡改攻击,能够实现协议报文的来源可靠性和数据完整性保护。
To improve the security of key agreement protocol and data encryption transmission protocol in the information security access specification of voltage monitoring device based on wireless access point name(APN)virtual private network,they were improved.The security of the protocol was improved by adding a timestamp to the request message and reply message and adding a timestamp and a message signature to key agreement confirmation message and data encryption message.At the same time,the security of the improved key agreement protocol and the data encryption transmission protocol was analyzed.The analysis results show that the improved protocol can resist the message replay attack and the message tampering attack.And it can protect the source reliability and data integrity of protocol packets.
作者
林楠
陈祚松
左黎明
王露
LIN Nan;CHEN Zuo-song;ZUO Li-ming;WANG Lu(Electric Power Research Institute,State Grid Jiangxi Electric Power Limited Company,Nanchang 330096,China;School of Science,East China Jiaotong University,Nanchang 330013,China;Institute of Systems Engineering and Cryptograph,East China Jiaotong University,Nanchang 330013,China)
出处
《计算机工程与设计》
北大核心
2019年第11期3085-3089,共5页
Computer Engineering and Design
基金
国家自然科学基金项目(11361024)
江西省教育厅科技基金项目(GJJ161417、GJJ170386)
国网江西省电力有限公司科技基金项目(52182017001L)
关键词
安全协议
密钥协商
加密传输
协议改进
数据完整性保护
security protocol
key agreement
encryption transmission
protocol improvement
data integrity protection