分布式系统数据通信的安全性研究

The Security of Data Communication in Distributed System

数据传输安全是很多分布式系统通信时都要面对的问题。本文将通信时所传输的信息分为两类:认证信息和数据信息。对于认证信息,通过综合运用时间戳、转换函数和MD5,使得其每次唯一,有效避免重放攻击;对于数据信息,将数据信息进行压缩、计算MD5,并加密,从而保证了数据信息的机密性和完整性;并通过"数据序号"增加了通信中的可审计性。最后给出了一个实用的数据通信接口原型。

Data transmission security is a problem that lot of distributed system have to be faced while communication. In this paper, the iniormation trans-mitted is divided into two categories the authentica-tion information and dats information For the au-thentication information it can be made unique ev-ery time by using of time stamp the conversion function and MD5 and encrypting data And add auditability in communication can be en-hanced by data sequence number At last it gives a practical data communication interface pro-totype