信息高速公路上的安全问题

首先介绍了信息高速公路的概貌,并指出了信息高速公路将面临的威胁和攻击,接着说明了信息高速公路应当具备的基本安全特性以及实现这些特性可以采取的措施,最后介绍了信息高速公路安全技术的开发动态。     

IC卡在电信领域的应用模式

本文列举了ＩＣ卡在电信领域及一些国家和地区的应用之后，给出了国际ＩＣ卡的应用发展模式，以供有关部门参考。     

OFDM系统信道盲估计的一种新算法

利用循环前缀（CP）引入的信息冗余，在利用接受信号的二阶统计特性实现正交频分复用（OFDM）系统信道盲估计的子空间算法基础上，采用矩阵变换的方法，改善信息序列的非周期相关函数，推导出信道估计的新算法。     

局域网通讯安全的实现

尽管当前有许多维护网络安全的策略，但是局域网内部通讯安全却往往被忽略，文章首先分析当前一些安全策略在维护局域网内部通讯安全的不足，然后提出一种具有加密功能的以太网网卡，用以解决局域网内部通讯的安全问题。     

A Survey of E-Commerce Security

E-commerce is a very active field of Internet research. A very important aspect of e-commerce is its security. Because of the variety of e-commerce applications, many security policies, protocols and techniques are involved in the deployment of the security. The related standards and protocols of e-commerce are studied in this paper. The general model of e-commerce security is set forth. In this model, two most important e-commerce protocols including secure sockets layer (SSL) and secure electronic transaction (SET) are analyzed. The open problems and new trends of e-commerce security are presented.     

An introduction to Wu's method for mechanical theorem proving in geometry

Wu's algebraic method for mechanically proving geometry theorems is presented at a level as elementary as possible with sufficient examples for further understanding the complete method.The work reported here was supported by NSF Grant DCR-8503498.     

一种适合协同工作系统的安全认证方案

针对网络化协同工作系统的安全认证需求，综合应用Kerberos协议、X．509证书和口令认证技术，借鉴PKI的思想，设计了一种适合网络化协同工作系统的灵活而易于扩展的安全认证方案。这个方案能够保证证书的安全分发，满足网络化协同工作系统对分散、动态的用户安全身份认证的要求。     

计算机网络安全体系的研究

首先,结合国内外同行的最新研究成果,我们将对网络系统中的不安全因素加以分析,并形式化地给出一个安全计算机网络系统的定义;然后将从理论上阐述一个基于OSI-RM体系的网络安全保护体系的模型,并讨论该安全保护体系在现有系统中的作用。     

Wavelet based Denial-of-Service detection

Network Denial-of-Service (DoS) attacks that disable network services by flooding them with spurious packets are on the rise. Criminals with large networks (botnets) of compromised nodes (zombies) use the threat of DoS attacks to extort legitimate companies. To fight these threats and ensure network reliability, early detection of these attacks is critical. Many methods have been developed with limited success to date. This paper presents an approach that identifies change points in the time series of network packet arrival rates. The proposed process has two stages: (i) statistical analysis that finds the rate of increase of network traffic, and (ii) wavelet analysis of the network statistics that quickly detects the sudden increases in packet arrival rates characteristic of botnet attacks.Most intrusion detections are tested using data sets from special security testing configurations, which leads to unacceptable false positive rates being found when they are used in the real world. We test our approach using data from both network simulations and a large operational network. The true and false positive detection rates are determined for both data sets, and receiver operating curves use these rates to find optimal parameters for our approach. Evaluation using operational data proves the effectiveness of our approach.     

MIMO系统中的分组全分集全码率空时编码

针对未编码的多输入多输出（MIMO，Multi—Input Multi—Output）系统，提出一种复杂度适中的分组全分集全码率（GFDFR，Group—wise Full Diversity Full Rate）空时编码方案。该方案通过在发送端进行天线分组，各组独立编码，减小全分集全码率（FDFR，Full Diversity Full Rate）编码块的大小从而降低系统编解码复杂度；在频率选择性信道中，进一步对子载波分组进行独立编码，获得频率分集（或多径分集），以适中的复杂度在不降低系统分集度的情况下保证了信息的全码率传输，是一种在MIMO信道中极具实用价值的空时编码方案。