摘要
随着信息技术的不断发展,计算机犯罪问题日趋严重,它直接危害国家的政治、经济、文化等各个方面的正常秩序。在计算机犯罪手段与网络安全防御技术不断升级的形势下,计算机取证的主要目的就是要收集数字证据,重构犯罪现场,为诉讼案件提供有效的证据。该文提出了基于SSL的数字证据保护机制,介绍了SSL安全协议,数字证书相关理论,并对其安全性进行了详细分析。经过这些改进措施,保证了数字证据的保密性和信息完整性,从而为计算机取证中的证据链的保全扣上了重要的一环。
With the development of information technology, the problem of computer crime comes to be more and more severe, it directly endangers the normal order of politics, economy and culture. Under the situation that ways of computer crime and safeguard techniques of network security are continually upgraded, computer forensics appears and develops rapidly, The main purpose of computer forensics is to collect digital evidence, reconstruct the alibi and provide valid evidences for law case. This paper presents the SSL- based Digital -evidence Protec- tion Mechanism and conducts a detailed analysis of its security. It Introduces the shortcomings of SSL protocol and the theory of digital certificates. These improvements ensure the confidentiality and integrity of information in the digital evidence, fastening an important part of the chain of evidence for preservation.
出处
《绵阳师范学院学报》
2008年第5期93-97,共5页
Journal of Mianyang Teachers' College
关键词
数字证据
证据完整性
数字签名
SSL
digital evidence
integrality of evidence
digital signature
SSL
