摘要
为了应对软件被恶意复制及非法利用等相关问题,对具有知识产权的软件进行安全授权是保障软件安全的有效手段.在软件授权过程中,对授权数据采用高度安全的加密算法尤为重要.文中提出一种新的授权加密方法,即DPAPI加密算法和RSA数字签名算法的混合加密算法.该算法利用DPAPI加密算法加密客户端申请授权的信息,在实现加密的同时保证软件授权的正确性,再利用RSA数字签名算法对服务器端的授权信息进行数字签名,以保证授权信息的不可伪造性.通过对该混合加密算法的验证可知,该算法在软件授权过程中具有一定的可行性.
In order to cope with problems related to malicious copying and illegal use of software,security authorization of software with intellectual property rights is an effective means to ensure software security.In the software authorization process,it is particularly important to use a highly secure encryption algorithm for the authorization data.This study proposes a new authorization encryption method,that is,a hybrid encryption algorithm of DPAPI encryption algorithm and RSA digital signature algorithm.This algorithm uses the DPAPI encryption algorithm to encrypt the client’s application for authorization information,while ensuring the encryption and the correctness of the software authorization at the same time,and then uses the RSA digital signature algorithm to digitally sign the server-side authorization information to ensure the unforgeability of the authorization information.The verification of the hybrid encryption algorithm shows that the algorithm has certain feasibility in the software authorization process.
作者
金美玉
汤亚玲
张学锋
JIN Mei-Yu;TANG Ya-Ling;ZHANG Xue-Feng(School of Computer Science and Technology,Anhui University of Technology,Maanshan 243002,China)
出处
《计算机系统应用》
2020年第11期151-156,共6页
Computer Systems & Applications
基金
安徽省教育厅自然科学基金重大项目(KJ2017ZD05)
