信息安全研究 ›› 2023, Vol. 9 ›› Issue (7): 707-.
• 技术应用 • 上一篇
严星宇1赵川1徐雁飞2
出版日期:
发布日期:
通讯作者:
作者简介:
Online:
Published:
摘要: 介绍了商用密码应用工作的背景,分析了证券网上交易系统的密码应用现状与存在的安全风险,提出了一种新的网上交易密码应用方案,从系统架构、涉及的关键密码技术、重点密码应用场景3个方面进行详细说明,论证了商密在加强用户身份认证、数据传输加密方面发挥的重要作用,改进了传统方案需要依靠硬件USBKey才能实现密码功能的弊端,对其他行业推广商密应用也有借鉴作用.
关键词: 协同签名, 商用密码算法, 交易系统, 身份认证, SSL协议
Abstract: This paper introduces the background of the application of commercial cryptographic algorithm, analyzes the current situation and security risks of the cryptographic application of the securities online trading system, and proposes a new online trading cryptographic application scheme witch is explained in detail from three aspects of system architecture, key cryptographic technologies involved and key cryptographic application scenarios, demonstrates the important role played by the State Secret in strengthening user identity authentication and data transmission encryption, improves the drawbacks of traditional solutions that rely on hardware USBKey to achieve cryptographic functions. The research is also useful for other industries to promote the application of commercial cryptographic algorithm.
Key words: threshold signature, commercial cryptographic algorithm, exchange system, authentication, SSL protocol
严星宇, 赵川, 徐雁飞. 券商行业商用密码应用与实践[J]. 信息安全研究, 2023, 9(7): 707-.
0 / / 推荐
导出引用管理器 EndNote|Ris|BibTeX
链接本文: http://www.sicris.cn/CN/
http://www.sicris.cn/CN/Y2023/V9/I7/707
