欢迎来到天天文库
浏览记录
ID:34513271
大小:170.01 KB
页数:31页
时间:2019-03-07
《11 keys management》由会员上传分享,免费在线阅读,更多相关内容在教育资源-天天文库。
1、KeysManagement周庆@信息安全实验室Capitalofeachcompany¢Seehowrichyouare>>周庆@信息安全实验室SomeQuestionsmakeMONEYforyourcompany!周庆@信息安全实验室SomeQuestions1.Whatcanweusedigitalsignaturefor?2.Whatarethethreesecurityrequirementsfordigitalsignature?3.HowdoweuseRSAfordigitalsignatur
2、e?周庆@信息安全实验室Outline1.Introduction2.Keyshierarchy3.Keysgeneration4.Keysdistribution5.Keysagreement周庆@信息安全实验室Introduction1.Keyisshouldbeprotectedwithbesteffort.2.Keyshouldbechangedfrequently.3.Whentherearemanyusersinasystem,keymanagementbecomescomplex.4.Howto
3、sharecommonkeyfordataencryption?周庆@信息安全实验室KeyshierarchyKeyProtocol1K1K1f1f1KeyProtocol2K2K2f2f2KeyProtocoln-1Kn-1Kn-1fn-1fn-1KeyProtocolnKnKnfnfnPlaintextMCiphertextCPlaintextM周庆@信息安全实验室Keyshierarchy¢Masterkeys¢Highestlevelkeys¢Nocryptographicprotection¢Hig
4、hestlevelsecurity¢Physicalprotection¢Seldomchanges周庆@信息安全实验室Keyshierarchy¢Datakeys(workingkeys)¢Lowestlevelkeys¢Protectedbyhigherlevelkeys¢Encryptbulkdata¢Generateddynamicallywhenneeded¢Encryptedordeletedafteruse¢Changedfrequently周庆@信息安全实验室Keyshierarchy¢Key
5、-encryptingkeys¢Higherlevelthandatakeys¢Protectedbyhigherlevelkeys¢Storedafterbeingencrypted¢Changeslessfrequentlythanlowerlevelkeys周庆@信息安全实验室KeyshierarchyKeyProtocol1K1K1f1f1KeyProtocol2K2K2f2f2KeyProtocoln-1Kn-1Kn-1fn-1fn-1KeyProtocolnKnKnfnfnPlaintextMCi
6、phertextCPlaintextM周庆@信息安全实验室Keyshierarchy¢Merits¢Improvedsecurity¢Resistanttoknow-plaintextattack¢Recoveryoflowerlevelkeysaffectlittletosecurityofwholesystem¢Improvedmanageability¢Mostkeysaregeneratedandmanagedautomatically¢Staffsarepreventedfromobtainingt
7、hedatakeys周庆@信息安全实验室Keysgeneration¢Masterkey¢Truerandomnumbergenerator¢Physicalmethod¢Coinflipper¢Thermalnoise¢Atmosphericnoise¢Nucleardecay¢…周庆@信息安全实验室Keysgeneration¢Key-encryptingkeys&datakeys¢SecureAlgorithms¢Pseudorandomnumbergenerators¢Streamciphers¢Ha
8、shfunctions¢Symmetricencryptionalgorithms¢…周庆@信息安全实验室Keysgeneration¢ANSIX9.17¢FIPS-171,ISO8732¢Triple-DES周庆@信息安全实验室ANSIX9.17¢DTi¢64-bittimestamp¢V0¢initialsecretseed¢Ri¢generatedkey周庆@信息安全实验室ANSIX9.17R
此文档下载收益归作者所有