一种改进的公钥证书抗攻击信任度模型

Improved attack-resist trust metric model for public key certification

下载PDF

导出

摘要由信任的相关概念及信任特性入手,阐述了信任度提出的原因,介绍了几种信任度模型,分析了各模型的特点和共性。重点对Levien信任度模型进行了研究,分析了其存在的缺陷,并从攻击者角度提出一种改进的节点信任度模型。新模型基于Levien信任度模型结构特点,根据计算攻击者的攻击能力参数,引入信任传递衰减因数,综合度量每一节点的信任度,分析得出提高信任度的途径。 From the concept of trust and confidence related characteristics, the reason of raising the trust metric was introduced. Several trust metric models were recommended, and their characteristics and commonness were analyzed. The study focused on the Levien trust metric model and its shortcomings, and a modified node trust metric model was proposed from the perspective of the attacker. The new model, based on the structure of Levln＇s model, is used for computing attackers＇ capacities for a successful attack. It imports a descending factor of trust transmission to measure the trust metric of each node synthetically, and gives a better way to improve trust metrics through analysis.

作者李想王宇张建伟

机构地区装备指挥技术学院研究生院装备指挥技术学院信息装备系

出处《计算机应用》 CSCD 北大核心 2007年第8期1919-1921,1925,共4页 journal of Computer Applications

关键词公钥基础设施信任信任度信任度模型 Public Key Infrastructure （PKI） trust trust metrics, trust metric model

分类号 TP18 [自动化与计算机技术—控制理论与控制工程]

引文网络
相关文献

参考文献10

1JΦSANG A,GRAY E,KINATEDER M.Analysing topologies of transitive trust[C/OL]// Proceedings of the Workshop of Formal Aspects of Security and Trust (FAST),2003[2007-01-01].http://citeseer.ist.psu.edu/cache/papers/cs/32947/http:zSzzSzwww.informatik.uni-stuttgart.dezSzipvrzSzvszSzdezSzpeoplezSzkinatemlzSzpaperszSzJosangGrayKinateder_FAST2003.pdf/jsang03analysing.pdf.
2LEVIEN R,AIKEN A.Attack-resistant trust metrics for public key certification[C/OL]// 7th USENIX Security,Symposium,January 26-29,1998,San Antonio,Texas.(2002-04-12)[2007-01-05].http://www.usenix.org/publications/library/proceedings/sec98/full_papers/levien/levien_html/levien.html.
3BETH T,BORCHERDING M,KLEIN B.Valuation of trust in open network[C]// Proceedings of the European Symposium on Research in Security (ESORICS).Brighton:Springer-Verlag,1994:3-18.
4MAURER U.Modeling a public-key infrastructure[C]// BERTINO E.Proceedings of 1996 European Symposium on Research in Computer Security (ESORICS' 96),LNCS 1146.Berlin:Springer-Verlag,1996:325-350.
5REITER M K,STUBBLEBINE S G.Toward acceptable metrics of authentication[C]// Proceedings of 1997 IEEE Symposium Security and Privacy.Washington:IEEE Computer Society,1997:10-20.
6ZIMMERMANN P.Pretty good privacy user's guide:volume Ⅰ and Ⅱ[Z].Distributed with PGP software,1993.
7周建峰,马玉祥,欧阳雄.PKI信任模型研究[J].电子科技,2006,19(4):75-78. 被引量：7
8白保存,李中学,陈旺.一种新的PKI信任度模型算法设计[J].计算机测量与控制,2005,13(8):843-845. 被引量：1
9JΦSANG A.An algebra for assessing trust in certification chains[C/OL]// Proceedings of the Network and Distributed Systems Security Symposium (NDSS' 99),1999[2007-01-15].http://sky.fit.qut.edu.au/～josang/papers/Jos1999-NDSS.pdf.
10PERLMAN R.An overview of PKI trust model[J].IEEE Network Novermber,1991,3(6):38-43.

二级参考文献12

1Yahalom R, Klein B, Beth T. Trust relationships in secure systems - a distributed authentication perspective [A]. Prec. 1993 IEEE Syrup. Besearch in Security and Privacy [C]. 1993, 150-164.
2Beth T, Borcherding M, Klein B. Valuation of Trust in Open Networks [A].Proc. Computer Security- ESORICS '94 [C]. 1994 , 3-18.
3Maurer U. Modelling a public - key infrastructure[A]. Computer security-ESORICS '96[C]. 1996.
4Kohlas R, Maurer U. Confidence valuation in public - key infrastructure based on uncertain evidence [A]. International Workshop on Practice and Theory in Public Key Cryptosystems 2000 [C]. 2000.
5Josang A, Knapskog S J. A metric for trusted systems [J]. Global IT Security. Wien : Austrian Computer Society, 1998. 541 - 549.
6Reiter M K, Stubblebine S G. Toward acceptable metrics of authentication[A]. Proc. 1997 IEEE Syrup. Security and Privacy [C]. 1997, 10-20.
7Ellison C, Schneier B. Ten Risk of PKI : you're not being told about public key infrastructure [J]. Computer Security Journal, 2000, 16 (1) : 1-7.
8Abdul - Rahman A, Hailes S . A distributed Trust model. In model. [A].Proceedings of the 1997 New Security Paradigms Workshop [C]. Cumbrla,UK: ACM Press, 1998, 48-60.
9Dellarocas C. The design of reliable trust management systems for electronic trading communities [EB/OL]. http: //ces. mit. edu/dell/trustmgt.pdf.
10Reiter M K, Stubblebine S G. Path independence for authenti-cation in large - scale systems [A]. ACM Conference on Computer and Communications Security[C]. 1997, 57- 66.

共引文献6

1胡廉民.基于分层信任模型的PKI机构证书更新研究[J].通信技术,2007,40(8):77-79. 被引量：4
2周天亮,尹辉.基于宏块划分的视频水印算法[J].怀化学院学报,2010,29(5):58-61.
3尹辉.基于H.264编码的帧间预测块划分视频水印算法[J].计算机与现代化,2010(8):139-142. 被引量：1
4刘谦,骆源,翁楚良,李明禄.基于可信平台模块的虚拟机安全协议[J].信息安全与技术,2010,1(6):49-55. 被引量：6
5苏兵,吕芳芳,王洪元,游静.PKI网络信任模型的分析与研究[J].计算机与数字工程,2010,38(11):104-109.
6罗旭富,骆源.基于TPM的虚拟机安全协议的研究[J].计算机与现代化,2013(7):30-33.

1林满山,郭荷清.单点登录技术的现状及发展[J].计算机应用,2004,24(S1):248-250. 被引量：71
2高晓芳,朱珍民,刘金刚,吴秀兰.基于机器学习的用户信任模型研究[J].计算机工程与设计,2010,31(13):2947-2950. 被引量：1
3王诚,张祖昶.基于信任度的网格安全访问模型的研究[J].南京邮电大学学报（自然科学版）,2009,29(3):78-82. 被引量：3
4许文杰,邢朝辉,李菲菲.基于参数选择优化SVM算法的研究[J].山东交通学院学报,2010,18(2):79-82. 被引量：3
5杨秀梅,孙咏,王美吉,田月.层次分析法在网络用户信任度评价模型中的研究[J].计算机系统应用,2016,25(3):267-270. 被引量：5
6吴彦文,王洁,王飞.混合粒子群遗传算法的协同过滤推荐模型[J].小型微型计算机系统,2017,38(3):527-530. 被引量：8
7陈文宇,张忠全,向涛,桑楠.基于相似度的语义Web服务发现技术研究[J].电子科技大学学报,2010,39(6):896-899. 被引量：8
8刘克中,庄洋,周少龙,刘守军.基于节点感知信任度模型的无线传感网络事件检测方法[J].北京邮电大学学报,2015,38(1):61-66. 被引量：10
9黄宁.从攻击者角度谈网站安全[J].电脑编程技巧与维护,2013(24):125-126. 被引量：1
10白保存,李中学,陈旺.PKI信任度模型路径算法研究[J].计算机工程与应用,2005,41(21):182-185. 被引量：7

计算机应用

2007年第8期

浏览历史

内容加载中请稍等...

一种改进的公钥证书抗攻击信任度模型

参考文献10

二级参考文献12

共引文献6

相关作者

相关机构

相关主题

浏览历史