摘要
为了满足安全数字出版技术的需求,提出了一种融合高级加密与消息认证算法的新型解决方案。系统通过HMAC算法做为消息认证机制,核心Hash函数采用引入私密密钥后的HMAC技术的SHA-1算法。数字出版文件的加密是系统算法的第二层,AES加密算法具有可选的密钥长度,提供优于DES及3DES算法的加密性能,通过AES算法加密的文件难于破解。同时系统中采用客户端无法更改的机器ID号作为AES算法的加密密钥,客户端密文使用时需读取ID号进行动态解密,并且解密后的文件不会存储在设备硬盘中,防止了解密文件的非法发布。
In order to meet the demand for secure digital publishing,this paper presents a new idea which combines AES and message authentication algorithms to ensure the security in digital publishing.HMAC has been chosen as message authentication,and we take SHA-1 with HMAC as Hash function.The encryption of digital files is in the second layer of the system.AES is much better than DES and 3DES,length of its key could be assigned by users,and it has been proven that AES is hard to crack.ID of our mobile internet device which can't be modified by the user is chose as the cipher key,and the ciphertext could be decrypted by clients using ID dynamically,but plaintext would not written to the disk,so it can't be published without permission.
出处
《微处理机》
2012年第1期60-62,共3页
Microprocessors
