基于社会网络特性的双混沌互反馈加密算法研究

J4 ›› 2016, Vol. 38 ›› Issue (02): 277-283.

基于社会网络特性的双混沌互反馈加密算法研究

易成岐1,姜京池2,薛一波3,4

（1.哈尔滨理工大学计算机科学与技术学院,黑龙江哈尔滨 150080;
2.哈尔滨工业大学计算机科学与技术学院,黑龙江哈尔滨 150001;
3.清华大学信息科学技术国家实验室（筹）,北京 100084;4.清华大学信息技术研究院,北京 100084）

收稿日期:2015-09-12 修回日期:2015-11-23 出版日期:2016-02-25 发布日期:2016-02-25
基金资助:
国家科技支撑计划（2012BAH46B04）

An encryption algorithm of double chaos with
mutual feedback based on the features of social networks

YI Chengqi1,JIANG Jingchi2,XUE Yibo3,4

（1.School of Computer Science and Technology,Harbin University of Science and Technology,Harbin 150080;
2.School of Computer Science and Technology,Harbin Institute of Technology,Harbin 150001;
3.National Lab for Information Science and Technology,Tsinghua University,Beijing 100084;
4.Research Institute of Information Technology,Tsinghua University,Beijing 100084,China）

Received:2015-09-12 Revised:2015-11-23 Online:2016-02-25 Published:2016-02-25

摘要/Abstract

摘要：

社会网络的数据获取已经成为社会网络分析的重要基石,虽然大多数社会媒体提供给开发者官方接口以供数据获取,但是在调用频次、权限、内容等方面都有严格的限制,难以获取全面的数据。因此,基于用户模拟登录的数据获取方法显得尤为重要,然而目前大多数社会媒体的登录过程存在较大的安全隐患,其登录密码均采用明文传输,严重威胁到用户的隐私安全。详细分析了Twitter登录过程中客户端与服务器间的交互过程,并且在流量层面解析POST请求时,发现Twitter的登录密码采用明文传输。为此,提出一种基于社会网络特性的双混沌互反馈加密算法。该算法利用登录用户的ID、创建时间、关注数作为加密函数的初始值与参数,并通过Logistic映射和Tent映射两个混沌系统交互式运算,得出密钥序列。由于输入参数的特殊性,使得密文具有不可预测性。实验表明，该算法取得了较好的加密和解密效果,同时加密与解密均处于毫秒级,可以做到用户的无感操作。此外,该算法拥有初始条件极度敏感、密钥空间大、加密强度高等特点。该算法能有效地防止攻击者使用相图、穷举、统计等方法进行密码破解,具有广阔的应用前景。

关键词: 社会网络, 模拟登录, 混沌加密

Abstract:

Social network data acquisition has become a foundation of social network analysis. Although the majority of social media provides official APIs for the developers, there are always rigid limitations on frequency of calls, permissions and contents, which makes it difficult to acquire complete data. So data acquisition technologies based on user login simulation are particularly important. Nevertheless, the login process of the majority of social media has some inherent security risks. The login passwords are usually transmitted as clear text, and user privacy suffers serious threats. This paper gives a detailed analysis of the interactions between clients and servers during user login based on Twitter. When we parse POST requests on the network traffic level, we find that Twitter transmits login passwords as clear text. Hence, we propose an encryption algorithm of double chaos with mutual feedback based on the features of social networks. The algorithm utilizes users’ IDs, the creation time and the number of followings as the initial values of the encryption functions. By applying interactive operations between Logistic mapping and Tent mapping, the algorithm obtains a new sequence of secret keys. The particularity of input parameters leads to the unpredictability of the cipher text. Experimental results show that our algorithm obtains better encryption and decryption. Meanwhile, the speeds of encryption and decryption are on the time scale of milliseconds, thus users do not feel any waiting. Furthermore, the algorithm has the features of sensitivity to initial conditions, large key space and highstrength encryption. The algorithm can prevent attackers from breaking the codes via methods such as phase diagram, bruteforce computation and statistics, and has a wide application prospect.

Key words: social network;login simulation;chaotic encryption

易成岐1,姜京池2,薛一波3,4. 基于社会网络特性的双混沌互反馈加密算法研究[J]. J4, 2016, 38(02): 277-283.

YI Chengqi1,JIANG Jingchi2,XUE Yibo3,4. An encryption algorithm of double chaos with
mutual feedback based on the features of social networks [J]. J4, 2016, 38(02): 277-283.

参考文献［10］

［1］	Statista.Leading social networks worldwide as of March 2015,ranked by number of active users (in millions)［EB/OL］.［20150312］.http://www.statista.com/statistics/272014/globalsocialnetworksrankedbynumberofusers/.
［2］	Craig S.By the numbers:40 amazing Weibo statistics［EB/OL］.［20150312］.http://expandedramblings.com/index.php/weibouserstatistics/.
［3］	Matthews R.On the derivation of a “chaotic” encryption algorithm ［J］.Cryptologia,1989,XIII(3):2942.
［4］	Wheeler D D.Problems with chaotic cryptosystems ［J］.Cryptologia,1989,13:243250.
［5］	Zhang G,Liu Q.A novel image encryption method based on total shuffling scheme ［J］.Optics Communications,2011,284(12):27752780.
［6］	Wu G C,Baleanu D.Discrete fractional logistic map and its chaos ［J］.Nonlinear Dynamics,2014,75(12):283287.
［7］	Baykasoglu A. Design optimization with chaos embedded great deluge algorithm ［J］.Applied Soft Computing,2012,12(3):10551067.
［8］	Liu L, Yang P, Zhang J, et al.Compressive sensing with tent chaotic sequence ［J］.Sensors & Transducers,2014,165(2):17265479.
［9］	Jingchi J,Chengqi Y,Yuanyuan B,et al.Online community perceiving method on social network［C］∥Proc of the 1st International Workshop on Cloud Computing and Information Security, 2013:1.
［10］	Malik S.A Novel keybased transposition scheme for text encryption［C］∥Proc of Frontiers of Information Technology (FIT),IEEE,2011:201205.

[1]	张素琪1，顾军华2，尹君2，郭京津2. 求解最大团问题的混合修复遗传算法及其在社会网络中的应用[J]. 计算机工程与科学, 2016, 38(12): 2551-2559.
[2]	冯健，丁媛媛. 基于重叠社区和结构洞度的社会网络结构洞识别算法[J]. J4, 2016, 38(05): 898-904.
[3]	颜庆，张鹏. 社会网络中的影响力最大化问题[J]. J4, 2015, 37(02): 263-268.
[4]	邵成成，姜新文，陈侃，朱培栋. 基于社会认证的网络身份模型[J]. J4, 2015, 37(01): 56-62.
[5]	张春英1,2,郭景峰1 . Web社会网络的粗糙属性图模型及应用[J]. J4, 2014, 36(03): 517-523.
[6]	王金辉，贺利坚，张伟,童向荣. 微博中基于用户偏好的信息传播研究 [J]. J4, 2013, 35(3): 140-144.
[7]	吴静，景凤宣，齐富民. 基于混沌系统的数字水印加密算法研究[J]. J4, 2013, 35(12): 126-133.
[8]	张佩云1,2,黄波3,宫秀文1. 一种基于社会网络的可信服务最大覆盖方法[J]. J4, 2013, 35(10): 36-43.
[9]	蔡国永，林航. 社会语义网分析技术研究[J]. J4, 2013, 35(1): 88-93.
[10]	张晓芳，李国徽，庞永杰. 面向Web社会网络搜索的人名同一性判断[J]. J4, 2012, 34(9): 128-134.
[11]	韩毅1，贾焰1，刘春阳2，周斌1，韩伟红1. 一种基于相似性聚类的社会网络合作模式发现方法[J]. J4, 2012, 34(6): 146-152.
[12]	张晓琳，王颖，李玉峰. 基于社会网络的(α,k)匿名方法[J]. J4, 2012, 34(11): 50-54.
[13]	张颖星，姚益平. 面向社会网络仿真的混合时间管理算法[J]. J4, 2012, 34(11): 77-82.
[14]	吴〓鹏，李思昆. 基于领域本体的社会网络信息分析与可视化[J]. J4, 2011, 33(12): 66-71.
[15]	陈强[1] 廖开际[2] 奚建清[3]. 专家知识地图的关键技术与设计[J]. J4, 2008, 30(2): 96-98.