毕业设计：简述基于JAVA的通用安全模块的设计（终稿）.doc

简述基于JAVA的通用安全模块的设计 摘 要 本文详细介绍了基于口令的身份认证与文件安全传输两个通用安全模块的设计原理和实现过程，分析了当前口令保存的安全性，提出了运用MD5算法等对口令进行处理，并将处理结果保存在数据库中的方法。同时为了进一步增强认证系统的灵活度，设计了用户注册时的口令模式选择、自主修改用户口令、自主选择口令字符串长度等策略。在本文设计的认证过程中，用户输入认证口令信息，作必要的处理之后，会与数据库里的用户真实信息进行对比来验证用户的合法性，合法用户登录成功后可以访问文件安全传输模块；而文件安全传输模块的设计，是应用SSL协议建立文件安全传输通道，可以保障机密文件内容不被窃听、篡改、伪造。整个系统采用JAVA语言对SSL协议、DES、MD5的支持设计实现的，具有设计简练、认证灵活、安全性能可靠、成本低廉等优点，能很好地解决各类企事业单位的用户身份鉴别和传输文件的机密性问题。 关键词: 身份认证；消息摘要；DES；SSL；加密；解密 The Design and implementation of Two General Security Models Based on Java Abstract The paper initiates the principle and implementation of two general security modules of password-based authentication and secure file transfer. It analyses the security of the current password, then proposes an approach that utilizes MD5 algorithm to encrypt password, finally stores the results in databases. To make the authentication system more flexibility, we introduce some policies: when users register, they can choose password model, they can modify password freely, they can choose the length of password independently etc. In the authentication process designed in this paper, the user inputs password which is processed to compare with the information stored in DB to authenticate user. If logon successful they will be able to access the secure file transfer module. And the design of secure file transfer module is the use of the SSL Protocol to establish security file transfer channels which can protect the confidential contents of the files against eavesdrop, alter and forge. The system is implemented in Java that supports SSL protocol, DES, MD5, which has the following virtues: briefness in design, authentication agility, secure and cheap in cost, and can help all kinds of companies to solve the problems of identity authentication and confidentiality of file transfer. Key words: authentication; Message-digest; DES; SSL; Encryption; Decryption 目 录 论文总页数：27页 1 引言 1 1.1 课题背景 1 1.2 国内外研究现状 1 1.3 本课题研究的意义 2 1.4 本课题的研究方法 2 2 需求分析 3 2.1 口令安全模块部分功能需求 3 2.2