对一个强安全的认证密钥交换协议的分析

在2012年第15届国际公钥密码学(PKC)年会上,Fujioka等人利用密钥封装机制(KEM)提出了认证密钥交换(AKE)协议的一个通用构造,称为GC协议,并在CK+模型下证明了该协议的安全性。该文对GC协议进行了安全性分析,指出该协议是不安全的,难于抵抗不知道任何秘密信息的外部攻击者实施的假冒攻击,进一步分析了原协议安全性证明中被疏忽之处。     

分布式网络性能智能监测系统的设计与实现

设计并实现了一种分布式网络性能智能监测系统。系统由很多分布式的客户端组成，可以监测跨交换机域网络。系统同时将神经网络算法引入到流量分析，形成了智能流量分析功能。最后提出了一种基于Hash表的可视化的入侵检测机制，可以简单直观实时地反应网络入侵。     

Encrypted image retrieval in multi-key settings based on edge computing

Aiming at the fact that the existing encrypted image retrieval schemes do not consider different keys to encrypt images,a multi-key encrypted image retrieval system based on edge computing (including basic scheme and enhanced scheme) based on local sensitive hashing,secure nearest neighbor and proxy re-encryption technologies was proposed.The retrieval efficiency and accuracy were improved and the extra computational cost of query users was reduced.Security analysis shows that the basic scheme can only resist the known ciphertext attack,while the enhanced scheme can resist the known background attack.The experimental performance test based on the real-world dataset shows that the proposed schemes are feasible in practical application scenarios.     

Improved Side‐Channel Attack on DES with the First Four Rounds Masked

This letter describes an improved side‐channel attack on DES with the first four rounds masked. Our improvement is based on truncated differentials and power traces which provide knowledge of Hamming weights for the intermediate data computed during the enciphering of plaintexts. Our results support the claim that masking several outer rounds rather than all rounds is not sufficient for the ciphers to be resistant to side‐channel attacks.     

Security strategy of powered-off SRAM for resisting physical attack to data remanence

time of data remanence is reduced by 82% while the operation power consumption only increases by 7%.     

基于攻击树的协同入侵攻击建模

由于现代入侵方法从单步入侵转变到协同入侵,文章在传统攻击树基础上,提出了分层次攻击树,并用模块化的方法为协同攻击建模,以IP-spoofing攻击为例说明了建模方法。     

VDS在网络中的应用

VDS是专门解决复杂系统网络安全问题的。它率先解决了网络环境下难以高速准确检测病毒的全球性难题，以旁路方式接入网络，能够实时监测网络环境中的病毒疫情，全高检测各种网络病毒的扫描、传输、攻击等行为，定位病毒的来源，测量病毒产生的网络压力。并准确提供病毒类别、病毒名称、病毒变种、病毒危害级别等全面信息，形成网络病毒的全局视图。     

Synthesis and reactivity of tricarbonyl(1-methoxycarbonyl-5-phenylpentadienyl)iron(1+) cation

Tricarbonyl(1-methoxycarbonyl-5-phenylpentadienyl)iron(1+) hexafluorophosphate (7) was prepared in two steps from tricarbonyl(methyl 6-oxo-2,4-hexadienoate)iron. While addition of carbon and heteroatom nucleophiles to 7 generally occurs at the phenyl-substituted dienyl carbon to afford (2,4-dienoate)iron products, the addition of phthalimide proceeded at C2 to afford a (pentenediyl)iron product (18). Complex 18 was structurally characterized by X-ray diffraction analysis.     

双随机相位编码光学加密系统的唯密文攻击

针对双随机相位编码光学加密系统的安全性分析表明，该系统属于线性对称分组密码系统，其线性性质为安全性留下极大隐患.在唯密文攻击下，仅根据密文估计出物面波函数的“支撑”(support)，然后利用迭代相位恢复算法获得物面波函数(其振幅是明文信息)，再根据物面波函数与频域密文的关系可推导出频谱平面的解密密钥.由于估计出来的物面波函数的“支撑”相对于真实的物面波函数的“支撑”有一定的平移，使得恢复的物面波函数与真实的物面波函数之间无论在振幅上还是相位上都存在平移，导致用推导出来的解密密钥去解密其他密文时所获得的明文与原始明文之间存在明显平移.然而，可依照这一先验信息，将估计出来的物面波函数的“支撑”在物面内遍历，从而找到逼近真实解密密钥的解.利用此解密密钥去解密其他密文时获得更好的解密效果. 关键词： 光学信息安全 双随机相位编码 唯密文攻击 函数支撑     

无线传感器网络安全技术综述

详细阐述了传感器网络安全现状、面临的安全挑战及其需要解决的安全问题。从密钥管理、安全路由、认证、入侵检测、DoS攻击、访问控制方面讨论传感器网络的各种安全技术，并进行综合对比。希望通过这些说明和对比，能够帮助研究者为特定传感器网络应用环境选择和设计安全解决方案。最后总结和讨论传感器网络安全技术的研究方向。