IHO+S-63数据保护方案的安全性分析及改进.pdfVIP

Security A nalysis and Im provem ent for IH O S-63 D ata Protection Schem e A BST RA C T Traditional paper navigational chart w hich has been used for several years w ill be replaced w ith E lectronic N avigational Chart (EN C) along w ith the arrival of inform ation-based ages. International com m unity extrem ely values EN C and its application system s (ECD IS etc.), International H ydrographic O rganization (IHO) and related international organization m ake lots of specifications while EN C is rising. In order to protect EN C to avoid an unauthorized replication, to insure its source reliability and the data integrity in the m eantim e, IH O drew up and prom ulgated D ata Protection Schem e (Special Publication N o. 63). This schem e is based on the PRIM A R protection schem e, adopt B low fish algorithm to encrypt, use H ash function (SH A -1) and C yclic Redundancy Check to m ake sure the data integrity, and adopt D SA signature. This thesis m akes an integrate analysis of IH O S-63 D ata Protection Schem e firstly, lays em phasis on analysis of the participants responsibility and authorization, also gives a particular sum m ary on each m odule in this schem e. Secondly the thesis does security analysis from the data confidentiality, integrity, authentication and non-repudiation respectively. There are several im provem ents in the end of thesis to m ake the schem e m ore safety. Forw ard security digital signature im provem ent could reduce the im pact of key leakiness: W hen the key leaks passively, the attacker could not forge previous period signature of inform ation. W hen the key leaks - II - actively, the D ata Server and Schem e A dm inistrator could not deny