密码运行安全体系与关键技术研究

Architecture and Key Techniques for the Cryptographic Running Security

当前大国间网络空间控制权争夺日益激烈,密码作为保护网络空间安全的核心技术,正成为各方博弈的焦点和控制权争夺的胜负手.随着网络和密码攻击技术的发展,仅依赖密码设计安全和工程安全等静态安全已无法满足日益紧迫的密码应用安全需求,亟需对密码运行时的安全开展系统性研究.本文基于密码设计安全与工程安全的基本原理,以重要网络与信息系统密码保障为中心,以密码应用在网络与信息系统中面对的威胁锋面为焦点,提出密码运行安全概念,分析其内涵与演进特征,构建密码运行安全需求模型、保障体系和工程系统等架构.基于此,梳理归纳密码运行安全相关关键技术,形成密码运行安全技术体系.最后,总结分析密码运行安全面临的机遇和挑战,展望需要持续深入研究的重大问题.希望借此推动密码安全领域的科学研究与现代化治理进程.

With the wide application of networks,the problem of cyberspace security becomes more and more important.Cryptography,as the fundamental core technology for protecting cyberspace se-curity,is also becoming the technical focus.With the development of network and cryptographic attack technology,relying on static security concepts such as cryptographic design security and cryptographic engineering security can no longer meet the increasingly critical security needs of many cryptographic applications.It is urgent to conduct comprehensive research on the cryptographic running security.Based on the basic principle of cryptographic security of design and engineering,focusing on the cryp-tographic protection of vital network and information systems and the threats faced by cryptographic applications of information systems,this paper proposes the concept of cryptographic running security,analyzes the connotation and evolution process of cryptographic running security.Furthermore,this paper constructs a requirement model,a protection system,and an engineering framework for crypto-graphic running security.Based on this,some key techniques related to cryptographic running security are analyzed and summarized.Finally,this paper summarizes the challenges and opportunities faced in the field of cryptographic running security,points out the major issues that require in-depth study,which is anticipated to promote scientific research and modern governance in the field of cryptographic running security.