摘要
苹果移动操作系统iOS因其文件系统独特的加密保护机制具备更高的安全性,系统深入研究iOS文件系统的加密保护策略具有重要意义。从苹果授权、软硬件结合、逐层加密、分类保护、随机化、口令抗搜索、算法强度7个方面,对iOS文件系统加密保护策略进行分析研究。结果表明:一体化的设计使硬件软件专门定制,深度融合,方便服务提供商控制出口入口,有效提高系统的运行效率和安全性;分治思想的运用对不同层级和分类,采取不同的保护方法,针对性提高加密强度;安全冗余度的增加扩大搜索空间容量,提高抵抗搜索攻击的能力,缓解攻击效果;不确定性的引入增大猜解密钥和捕捉偏移的难度,降低被攻破的风险。
iOS,the mobile operating system of Apple,has higher security due to its unique encryption protection mechanism.It is of great significance to study the encryption protection strategy of iOS file system systematically and deeply.In this paper,the strategy is analyzed in Apple authorization,combination of software and hardware,layer-by-layer encryption,classification protection,randomization,password anti-search and encryption algorithm strength.The result shows that the integrated design can ensure a perfect collaboration of hardware and software and provide a convenient way to control devices,which effectively improve efficiency and security;the application of divide and conquer can adopt different protection methods according to different levels and classification,which improves encryption strength;increasing security redundancy can improve the ability of anti-search attack,which mitigates the attack effect;introducing uncertain factors can increase the difficulty of guessing key and capturing offsets,which reduces the risk of being compromised.
作者
周国淼
段明
奚琪
ZHOU Guomiao;DUAN Ming;XI Qi(Henan Province Key Laboratory of Network Cryptography Technology, Zhengzhou 450001,China;State Key Laboratory of Mathematical Engineering and Advanced Computing, Zhengzhou 450001,China)
出处
《信息工程大学学报》
2019年第4期492-496,共5页
Journal of Information Engineering University
关键词
IOS
文件系统
加密保护
策略
iOS
file system
encryption protection
strategy
