摘要
提出了一种软硬件结合的数据加密传输方案,实现了Internet通信的局域网之间传输的数据的加解密。该方案采用基于OpenSSL的认证中心对网关服务器进行身份认证,用DH算法分配初始密钥,用SSX31-B加密卡对传输数据进行3DES加解密。结果表明,该方案具有良好的安全性和稳定性,以及较高的传输效率。
This paper first analyzes current encryption methods,and then describes an encryption data transmission system using a SSX31-B card.The very secure triple DES algorithm integrated in the card was used to encrypt plain text,and the DH algorithm was used to distribute the two session keys.At the same time,a certificate authority based on OpenSSL was use to authenticate both communication sides.The system was found to be very efficient and achieved very good security.
出处
《北京化工大学学报(自然科学版)》
CAS
CSCD
北大核心
2011年第2期104-107,共4页
Journal of Beijing University of Chemical Technology(Natural Science Edition)
关键词
数据加密传输
身份认证
认证中心
密钥分配
encryption data transmission
identity authentication
certificate authority
key distribution
