|
|||||
|
|
| 基于主动秘密共享的Web容侵策略研究 | |
| 引用本文: | 李庆华,姚静,赵峰.基于主动秘密共享的Web容侵策略研究[J].计算机工程与科学,2006,28(8):34-35. |
| 作者姓名: | 李庆华 姚静 赵峰 |
| 作者单位: | 1. 华中科技大学计算机科学与技术学院,湖北,武汉,430074 2. 国家高性能计算中心(武汉),湖北,武汉,430074 |
| 摘 要: | 在基于传统秘密共享的Web服务中,入侵者可长时间攻击,降低了系统的可靠性,不再适用。本文提出了一种基于主动秘密共享的Web服务器入侵容忍方案,并给出了改进可验证秘密共享方案后的影子产生算法和更新算法。该方案在不改变共享Web服务器私钥的情况下,周期性地更新私钥影子并且销毁原来的影子值,使得入侵者的可利用时间缩短 在一个周期内,从而保证Web私钥的长期安全性。 |
| 关 键 词: | 入侵容忍 主动秘密共享 Web安全 |
| 文章编号: | 1007-130X(2006)08-0034-02 |
| 修稿时间: | 2005年6月17日 |
An Intrusion Tolerance Strategy Based on Proactive Secret Sharing for Web Applications |
|
| LI Qing-hua,YAO Jing,ZHAO Feng.An Intrusion Tolerance Strategy Based on Proactive Secret Sharing for Web Applications[J].Computer Engineering & Science,2006,28(8):34-35. | |
| Authors: | LI Qing-hua YAO Jing ZHAO Feng |
| Abstract: | The Web server scheme based on traditional secret sharing is not applicable because the adversary has so much time to mount attacks that this will reduce the dependability. This paper presents a Web server system based on proactive secret sharing, and provides share initialization and renewal algorithms with an improved verifiable secret sharing scheme. This system proposes an effective scheme maintaining the long-time security of Web server private keys, where shares are periodically renewed without changing the shared key and previous shares are all erased in such a way that the available time for the adversary will be reduced to a single time period. |
| Keywords: | intrusion tolerance proactive secret sharing Web security |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! | |
| 点击此处可从《计算机工程与科学》浏览原始摘要信息 | |
| 点击此处可从《计算机工程与科学》下载全文 | |