欢迎来到天天文库
浏览记录
ID:36623888
大小:1.63 MB
页数:94页
时间:2019-05-13
《容忍入侵理论与应用技术研究》由会员上传分享,免费在线阅读,更多相关内容在学术论文-天天文库。
1、西安电子科技大学博士学位论文容忍入侵理论与应用技术研究姓名:史庭俊申请学位级别:博士专业:计算机应用技术指导教师:马建峰;王宝树20060301资源不对称关系。关键词:容忍入侵秘密共享知识证明数字签名密钥分配容忍入侵数据库自适应安全DoS攻击ABSTRACTNowadays,theneedforhighlysecure,highlydependablecomputersystemsisacute.Therearealotoftechniquestoachievesecurityinnetwork.Intrusion-toleranceisoneofthenewtechniquesof
2、usingfault-tolerancetoachievesecurityproperties.Itisanemergingapproachtobuildsurvivablesystemsinrecognizingthatnosystemwillbeabsolutelyexemptfromintrusions,andisconsideredastheultimatedefenceoftheinformationsystems.Insteadoffocusingonintrusionprevention,itassumesthatsystemvulnerabilitiescannotb
3、etotallyeliminated,andthatexternalattackersormaliciousinsiderswillidentifyandexploitthesevulnerabilitiesandmakeillicitaccesstothesystem.Itsaimistodesignsystemswiththecapacitytofulfilitsprimarymissionsinthepresenceofintrusionorpartialcompromising.Thisthesisisconcernedwiththeresearchonthetheoryan
4、dmethodsofintrusion-toleranceanditsapplications.Somerelevantmodelsandsystemdesignsarepresentedinthisthesis,includingsomeintrusion-tolerantschemes,acomputationallysecureandintrusion-tolerantsystemdesign,andanovelapproachtoadaptivesecureproactivesecretsharingscheme.Besides,wepresentanauthenticati
5、onprotocolagainstDoSattacks.Thisthesismakesseveralcontributions,including:1.Wecontendthatbothareas,securityandfault-tolerance,wherethegoalsandmethodsoverlap,shallnotbeexaminedinisolationtoeachother.Webelievethattheperformanceofsecurityandfault-tolerancewillbeenhancediftheimpacteachcanhaveontheo
6、therisconsidered.Intrusion-toleranceisatechniqueofcombiningbothoffault-toleranceandsecurity.2.Weproposesomeintrusion-tolerantschemesbymeansofcombinationofsecretsharingschemeandtheknowledgeproof.Theseschemeshavethepropertiesofsimplestructureandhighsecurity.Theschemesensurethatthesystemscanprovid
7、ereliableservicesevenifsomeserversmisbehavecausedbyadversariesorfailures.Ouranalysisshowsthatthepassiveadversarycannotlearntheinformationaboutsecrets,andtheactiveadversarycannotalsodisrupttheservices.3.Anapproachtoestablishacomput
此文档下载收益归作者所有