网上报考系统以及数据加密传输的研究和应用
|
摘要
通过研究和开发网上报考系统及数据加密传输,掌握开发电子商务系统、在线支付系统和安全电子邮件应用的技术。
本文基于“北京教育考试院大型网络信息系统——自考子系统”,详细阐述了网上报名系统及数据加密传输的需求分析及总体设计。系统目标在于建立一个B2C模式的电子商务,使考生能够在Internet上报考并通过在线支付系统付费,同时考试院可以对考生的付费情况进行控制和管理。系统基于Oracle8i数据库,Oracle9ias作为Web Server,运用JSP、JavaBeans等技术开发动态网页;对在线支付系统进行探析,提出了解决方案。
随着Internet的迅速发展和各种通信设施的不断完善,越来越多的敏感信息需要在互联网上传送。FTP和电子邮件是在Internet上传播信息的重要的手段,极有必要采取措施提供对高密级数据的安全保护。
为此,我们深入研究加密算法,对多种算法进行了优劣性比较,用组合密码技术来优化和强化加密算法。并基于PGP SDK函数库研究安全电子邮件的客户端应用程序。它为电子邮件的正文及附件提供了加密、解密、签名、验证等功能,结合PGP的密钥证书管理功能和网状信任模型,为电子邮件用户提供邮件内容的保密性、完整性、发送方和接收方身份认证以及不可否认性等安全服务。
Researching and developing register for examination on internet system and data encrypted transfers in order to mastering technique of Electronic Commerce, on-line payment system and the secure email client application ?
This paper is based on "Beijing Education Examinations Authority Network
Information System--Self-study Examination subsystem" ? The analysis of
demand and the design of the system are elaborated . The target consists in establish an electronic commerce of B to C mode, to make examinees can register for examination on internet and pay by the on-line payment system, At the same time Beijing Education Examinations Authority can control and manage the paying circumstance of examinees. The system is based on Oracle8i database Server, Oracle9ias as Web Server . Dynamic webpage are designed using JSP and JavaBeans, etc. The on-line payment system is deeply discussed and analyzed, and given the solution,.
With the rapid development of Internet and the constant improvement of various communications equipment, more and more sensitive information are transmitted on Internet . FTP and email are the most important methods used for communication on Internet, it is necessary to adopt measures to transmit data in high secret degree safely .
For this purpose, after deeply researched Encryption and comparison, we use combination Encryption technique to optimize cryptography. And an email client application with security based on PGP has been developed . It provides the email users security services such as confidentiality, integrity , identification and non-reputation by the combination of providing encryption, decryption, digital signature, verification to the email and key management and web trust.
本文基于“北京教育考试院大型网络信息系统——自考子系统”,详细阐述了网上报名系统及数据加密传输的需求分析及总体设计。系统目标在于建立一个B2C模式的电子商务,使考生能够在Internet上报考并通过在线支付系统付费,同时考试院可以对考生的付费情况进行控制和管理。系统基于Oracle8i数据库,Oracle9ias作为Web Server,运用JSP、JavaBeans等技术开发动态网页;对在线支付系统进行探析,提出了解决方案。
随着Internet的迅速发展和各种通信设施的不断完善,越来越多的敏感信息需要在互联网上传送。FTP和电子邮件是在Internet上传播信息的重要的手段,极有必要采取措施提供对高密级数据的安全保护。
为此,我们深入研究加密算法,对多种算法进行了优劣性比较,用组合密码技术来优化和强化加密算法。并基于PGP SDK函数库研究安全电子邮件的客户端应用程序。它为电子邮件的正文及附件提供了加密、解密、签名、验证等功能,结合PGP的密钥证书管理功能和网状信任模型,为电子邮件用户提供邮件内容的保密性、完整性、发送方和接收方身份认证以及不可否认性等安全服务。
Researching and developing register for examination on internet system and data encrypted transfers in order to mastering technique of Electronic Commerce, on-line payment system and the secure email client application ?
This paper is based on "Beijing Education Examinations Authority Network
Information System--Self-study Examination subsystem" ? The analysis of
demand and the design of the system are elaborated . The target consists in establish an electronic commerce of B to C mode, to make examinees can register for examination on internet and pay by the on-line payment system, At the same time Beijing Education Examinations Authority can control and manage the paying circumstance of examinees. The system is based on Oracle8i database Server, Oracle9ias as Web Server . Dynamic webpage are designed using JSP and JavaBeans, etc. The on-line payment system is deeply discussed and analyzed, and given the solution,.
With the rapid development of Internet and the constant improvement of various communications equipment, more and more sensitive information are transmitted on Internet . FTP and email are the most important methods used for communication on Internet, it is necessary to adopt measures to transmit data in high secret degree safely .
For this purpose, after deeply researched Encryption and comparison, we use combination Encryption technique to optimize cryptography. And an email client application with security based on PGP has been developed . It provides the email users security services such as confidentiality, integrity , identification and non-reputation by the combination of providing encryption, decryption, digital signature, verification to the email and key management and web trust.
引文
1 王锡林,李瑞宏。计算机信息系统安全与反病毒。电子工业出版社,1995:187~215
2 网络最高安全技术指南。王锐,陈靓等译。机械工业出版社,1998:416~424
3 王育民,刘建伟。通信网的安全——理论与技术。西安电子科技大学出版社,1999:5~89
4 Rick Greenwald, Jim Milbery著[美]。Oracle9iAS Portal宝典。张志祥等译。电子工业出版社,2002:14~231
5 Bjarki Holm, John Carnell等著[美]。Oracle9i Java程序设计——使用PL/SQL和Java的解决方案。康博译。清华大学出版社,2002:8~161
6 David Crowder,Rhonda Crowder著[美]。网页制作宝典。高春蓉,谷宇等译。电子工业出版社,2002:424~446
7 曾满平,枫之秋。Web网站创建实例精解。北京希望电子出版社,2000:209~289
8 Bryan Pfaffenberger,Alexis D.Gutzman著[美]。HTML4实用大全。杨亚平,许进,葛声译。中国水利水电出版社,1999:237~300,457~475,496~502
9 黄理,李积善,曹林有,张勇。用JSP轻松开发WEB网站。北京希望电子出版社,2001:2~263
10 Cay S.Horstmann, Gary Cornell著[美]。最新Java2核心技术(卷1:原理)。李如豹,刚东梅等译。机械工业出版社,2002:14~515
11 Laura Lemay,Rogers Cadenhead著[美]。Java2编程21天自学通。束闻,王国良,林勇民译。清华大学出版社,2002:421~458,524~553
12 Michael Morrison等著[美]。实用JavaBeans编程。郭越译。电子工业出版社,1998:65~84
13 Laurence Vanhelsuwe著[美]。JavaBeans从入门到精通。邱仲潘等译。电子工业出版社,1998:30~351
14 郑雪雪。软件加密与数据恢复实例。人民邮电出版社,1997:1~121
15 冯晖,来凤琪,王绍银,章群。计算机密码学。中国铁道出版社,1999:146~150,158~162
16 郑雪雪。数据安全与软件加密技术。人民邮电出版社,1995:10~23
17 李海泉,李健。计算机网络安全与加密技术。科学出版社,2001:34~65
18 梁晋。电子商务核心技术——安全电子交易协议的理论与设计。西安电子科技大学出版社,2000:18~90
19 MasterCard International, Visa。SET secure electronic transaction specification。 New York: MasterCard Inc, 1997:6~10
20 周轶。IBM安全电子商务的解决方案。北京:IBM Inc,1998:17~18
21 马瑞萍。SSL协议安全研究。网络安全技术与应用。2001,(9):22~23
22 罗新星,江景佼,张军。电子支付系统的安全性研究及其设计。武汉理工大学学报,2003,(25):46~47
23 黄峰等。SET协议的证书管理。电子技术,1999,(3)
24 杨千里,王育民。电子商务技术与应用。电子工业出版社,1999:214~229
25 Bauknecht, Kurt等。Electronic commerce and web technologies。 Springer-verlag, 2001
26 Kou, Weidong。Electronic commerce technologies。Springer, 2001
27 沈昌祥。电子商务安全问题。网络安全技术与应用。2001,(9):7~8
28 韩宝明。电子商务安全与支付。人民邮电出版社,2001:28~62
29 邵晓薇,王维民。电子商务网上交易系统。人民邮电出版社,2000:12~102
30 闫锋。电子商务的安全性及其技术。信息工程学院学报,1999,(12):15~18
31 刘卫宁,宋伟。电子商务在线支付的安全保障。计算机应用,1999,(7):23~26
32 Kipp E. B, Hickman。SSL2.0 Protocol Specification。Netscape Communications Corp。1994, (11), 3~76
33 David Wagner, Bruce Schneider。Analysis of the SSL3.0 protocol, 1996, (11), 1~96
34 Alan O. Freier, Philip Karlton。The SSL Protocol Version 3.0。Internet Draft, 1996, (3), 6~89
35 卢开澄。计算机密码学:计算机网络中的数据保密与安全。清华大学出版社,1998:6~78
36 J. Myers。Simple Authentication and Secutity Layer。RFC 2222, 1997:25~60
37 P. Richard。Common Criteria for Information Technology Security Evaluation。Blue Publisher, 1998:112~125
38 Douglas R. Stinson。Cryptology Theory and Practice。CRC Press, 1995:9~16
39 Bruce Schneier著[美]。应用密码学——协议、算法与C原程序。吴世忠等译。第二版。机械工业出版社,1998
40 John Daemen, kuleuven. V, Vincent Rijmen。The block cipher SQUARE。Fast Software Encryption, Berlin: Springer-verlag, 1997
41 Neal Kibitz。A Course in Number Theory and Cryptology, Springer-verlag, 1987: 23~26
42 J. H. Loxton。Number Theory and Cryptology, Cambridge University Press, 1990:63~98
43 Alfred J. Menezes。Elliptic Curve Public Key Cryptosystems。Kluwer Academic Publishers。1993:45~56
44 U. M. Maurer。Fast Generation of Prime Numbers and Secure Public Key Cryptographic Parameters。Cryptology Press, 1995:123~156
45 RSA Data Security, Inc. Public-key cryptography standards(PKCS)。Washington: RSA Data Secutity Inc, 1993:2~30
46 B. Kaliski, J. Staddon, PKCS#1: RSA Cryptography Specifications RFC2437 Version2.0, 1998, 10
47 Kaufman, C. Perlman, R. Speciner。Network security: Private communication in a public world。Prentice hall, 1995
48 Mitsuru Matsui。Linear Cryptanalysis Method for DES Cipher。In: advances in Cryptology-Eurocrypt'93, Proc, Berlin: Springer-verlag, 1994
49 Eli Biham, Adi Shamir。Differential Cryptanalysis of DES-like Cryptosystems (Extended Abstract)。Advance in Cryptology-CRYPTO'90 proceedings, Springer-verlag, 1991
50 何明星,范平志。新一代私钥加密标准AES进展与评述。计算机应用研究,2001,(18):4~6
51 J. Daemon。V Rijmen. AES proposal: Rijndael.Version 2, 1999
52 E. Biham, A Birykov。How to strengthen DES using existing hard ware。 Advances in Cryptology, 1995, (8): 398~412
53 E. Biham。New types of cryptanalytic attacks using related keys。Advances in Cryptology, 1993, (6): 398~409
54 谢琳,胡刚,沈雁。一个安全电子邮件系统的设计与实现。计算机工程与科学。2000,01
55 刘琦。PGP加密系统及其安全性。网络安全技术与应用。2001,(9):29~31
2 网络最高安全技术指南。王锐,陈靓等译。机械工业出版社,1998:416~424
3 王育民,刘建伟。通信网的安全——理论与技术。西安电子科技大学出版社,1999:5~89
4 Rick Greenwald, Jim Milbery著[美]。Oracle9iAS Portal宝典。张志祥等译。电子工业出版社,2002:14~231
5 Bjarki Holm, John Carnell等著[美]。Oracle9i Java程序设计——使用PL/SQL和Java的解决方案。康博译。清华大学出版社,2002:8~161
6 David Crowder,Rhonda Crowder著[美]。网页制作宝典。高春蓉,谷宇等译。电子工业出版社,2002:424~446
7 曾满平,枫之秋。Web网站创建实例精解。北京希望电子出版社,2000:209~289
8 Bryan Pfaffenberger,Alexis D.Gutzman著[美]。HTML4实用大全。杨亚平,许进,葛声译。中国水利水电出版社,1999:237~300,457~475,496~502
9 黄理,李积善,曹林有,张勇。用JSP轻松开发WEB网站。北京希望电子出版社,2001:2~263
10 Cay S.Horstmann, Gary Cornell著[美]。最新Java2核心技术(卷1:原理)。李如豹,刚东梅等译。机械工业出版社,2002:14~515
11 Laura Lemay,Rogers Cadenhead著[美]。Java2编程21天自学通。束闻,王国良,林勇民译。清华大学出版社,2002:421~458,524~553
12 Michael Morrison等著[美]。实用JavaBeans编程。郭越译。电子工业出版社,1998:65~84
13 Laurence Vanhelsuwe著[美]。JavaBeans从入门到精通。邱仲潘等译。电子工业出版社,1998:30~351
14 郑雪雪。软件加密与数据恢复实例。人民邮电出版社,1997:1~121
15 冯晖,来凤琪,王绍银,章群。计算机密码学。中国铁道出版社,1999:146~150,158~162
16 郑雪雪。数据安全与软件加密技术。人民邮电出版社,1995:10~23
17 李海泉,李健。计算机网络安全与加密技术。科学出版社,2001:34~65
18 梁晋。电子商务核心技术——安全电子交易协议的理论与设计。西安电子科技大学出版社,2000:18~90
19 MasterCard International, Visa。SET secure electronic transaction specification。 New York: MasterCard Inc, 1997:6~10
20 周轶。IBM安全电子商务的解决方案。北京:IBM Inc,1998:17~18
21 马瑞萍。SSL协议安全研究。网络安全技术与应用。2001,(9):22~23
22 罗新星,江景佼,张军。电子支付系统的安全性研究及其设计。武汉理工大学学报,2003,(25):46~47
23 黄峰等。SET协议的证书管理。电子技术,1999,(3)
24 杨千里,王育民。电子商务技术与应用。电子工业出版社,1999:214~229
25 Bauknecht, Kurt等。Electronic commerce and web technologies。 Springer-verlag, 2001
26 Kou, Weidong。Electronic commerce technologies。Springer, 2001
27 沈昌祥。电子商务安全问题。网络安全技术与应用。2001,(9):7~8
28 韩宝明。电子商务安全与支付。人民邮电出版社,2001:28~62
29 邵晓薇,王维民。电子商务网上交易系统。人民邮电出版社,2000:12~102
30 闫锋。电子商务的安全性及其技术。信息工程学院学报,1999,(12):15~18
31 刘卫宁,宋伟。电子商务在线支付的安全保障。计算机应用,1999,(7):23~26
32 Kipp E. B, Hickman。SSL2.0 Protocol Specification。Netscape Communications Corp。1994, (11), 3~76
33 David Wagner, Bruce Schneider。Analysis of the SSL3.0 protocol, 1996, (11), 1~96
34 Alan O. Freier, Philip Karlton。The SSL Protocol Version 3.0。Internet Draft, 1996, (3), 6~89
35 卢开澄。计算机密码学:计算机网络中的数据保密与安全。清华大学出版社,1998:6~78
36 J. Myers。Simple Authentication and Secutity Layer。RFC 2222, 1997:25~60
37 P. Richard。Common Criteria for Information Technology Security Evaluation。Blue Publisher, 1998:112~125
38 Douglas R. Stinson。Cryptology Theory and Practice。CRC Press, 1995:9~16
39 Bruce Schneier著[美]。应用密码学——协议、算法与C原程序。吴世忠等译。第二版。机械工业出版社,1998
40 John Daemen, kuleuven. V, Vincent Rijmen。The block cipher SQUARE。Fast Software Encryption, Berlin: Springer-verlag, 1997
41 Neal Kibitz。A Course in Number Theory and Cryptology, Springer-verlag, 1987: 23~26
42 J. H. Loxton。Number Theory and Cryptology, Cambridge University Press, 1990:63~98
43 Alfred J. Menezes。Elliptic Curve Public Key Cryptosystems。Kluwer Academic Publishers。1993:45~56
44 U. M. Maurer。Fast Generation of Prime Numbers and Secure Public Key Cryptographic Parameters。Cryptology Press, 1995:123~156
45 RSA Data Security, Inc. Public-key cryptography standards(PKCS)。Washington: RSA Data Secutity Inc, 1993:2~30
46 B. Kaliski, J. Staddon, PKCS#1: RSA Cryptography Specifications RFC2437 Version2.0, 1998, 10
47 Kaufman, C. Perlman, R. Speciner。Network security: Private communication in a public world。Prentice hall, 1995
48 Mitsuru Matsui。Linear Cryptanalysis Method for DES Cipher。In: advances in Cryptology-Eurocrypt'93, Proc, Berlin: Springer-verlag, 1994
49 Eli Biham, Adi Shamir。Differential Cryptanalysis of DES-like Cryptosystems (Extended Abstract)。Advance in Cryptology-CRYPTO'90 proceedings, Springer-verlag, 1991
50 何明星,范平志。新一代私钥加密标准AES进展与评述。计算机应用研究,2001,(18):4~6
51 J. Daemon。V Rijmen. AES proposal: Rijndael.Version 2, 1999
52 E. Biham, A Birykov。How to strengthen DES using existing hard ware。 Advances in Cryptology, 1995, (8): 398~412
53 E. Biham。New types of cryptanalytic attacks using related keys。Advances in Cryptology, 1993, (6): 398~409
54 谢琳,胡刚,沈雁。一个安全电子邮件系统的设计与实现。计算机工程与科学。2000,01
55 刘琦。PGP加密系统及其安全性。网络安全技术与应用。2001,(9):29~31