• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

J4 ›› 2012, Vol. 34 ›› Issue (12): 60-65.

• 论文 • 上一篇    下一篇

一种基于CAS身份认证数据加密算法的研究与设计

朱晓露,杨清,刘格非   

  1. (湖南科技大学计算机科学与工程学院,湖南 湘潭 411201)
  • 收稿日期:2011-01-18 修回日期:2011-04-17 出版日期:2012-12-25 发布日期:2012-12-25
  • 基金资助:

    湖南省科技计划项目(2009JT3031);湖南省教育厅重点科学研究项目(10A028)

Design and Research on Data Encryption Algorithm of Identity Authentication System Based on CAS

ZHU Xiaolu,YANG Qing,LIU Gefei   

  1. (College of Computer Science and Engineering,
    Hunan University of Science and Technology,Xiangtan 411201,China)
  • Received:2011-01-18 Revised:2011-04-17 Online:2012-12-25 Published:2012-12-25

摘要:

随着各类管理信息系统的不断增加,迫切需要建立一个安全的身份认证系统来实现单点登录(SSO)。通过对不同身份认证技术的分析,研究了集中式认证服务(CAS)机制,分析了CAS的工作原理和安全性,并针对CAS存在的安全隐患,提出了一种混合动态数据加密算法MDEA。该算法结合了多种数据加密算法,并引入了随机数和时间戳动态因子,增强了身份认证系统的安全性。

关键词: 身份认证, 单点登录, 集中式认证服务, 混合动态数据加密算法

Abstract:

With the increasing management information systems, a security identity authentication system is urgently needed to realize single signon. The paper does some research on the mechanism of CAS by analyzing different identity authentication technologies and then analyses the working principle of CAS and its security. For the existing security problems, a mixed dynamic encryption algorithm which combined with a variety of encryption algorithms is proposed. In addition, the random number and time stamp are used in the algorithm to enhance the security of the system.

Key words: identity authentication;single signon;CAS;MDEA