已阅读5页,还剩3页未读, 继续免费阅读
版权说明:本文档由用户提供并上传,收益归属内容提供方,若内容存在侵权,请进行举报或认领
文档简介
COMMERCIALINSTANTMESSAGINGFORAMOREMEANINGFULDESIGNATHESISINCOMPUTERSCIENCEPRESENTEDTOTHEFACULTYOFTHEINTERNATIONALCOLLEGE,ZHEJIANGUNIVERSITYOFTECHNOLOGYINFULFILLMENTOFTHEREQUIREMENTSFORTHEDEGREEBACHELOROFSCIENCEINCOMPUTERSCIENCEBYZHUJIAQIJUNE,2010ONMYHONORASAUNIVERSITYSTUDENT,ONTHISASSIGNMENTIHAVENEITHERGIVENNORRECEIVEDUNAUTHORIZEDAIDASDEFINEDBYTHEHONORGUIDELINESFORPAPERSINCSFRIES1940,THISSUGGESTSTHATIMISAMOREFORMALREGISTERTHANSPEECHHOWEVER,WHENTHETEENAGERSDOINTENSIFYTHEIRADJECTIVES,THEIRPREFERREDCHOICEISSOTHUS,WHILETHETWOMEDIAMIRROREACHOTHERINEXHIBITINGTHESAMEINTENSIFYINGADVERBSOVERALL,THEREARESOMENOTABLEDIFFERENCESTHISISTHEFIRSTINDICATIONTHATIMCANNOTSIMPLYBELABELEDASPEECHLIKEREGISTERITMIXESINNOVATIVETRENDSALONGSIDEANOVERARCHINGCONSERVATIVENATURE163INSTANTMESSAGINGSECURITYASDISCUSSEDTHROUGHOUTTHISCHAPTER,THEUSEOFIMCANPUTONEATRISKOFHAVINGCONFIDENTIALINFORMATIONDISCLOSEDAHACKERCANOBTAINPASSWORDS,SYSTEMCONFIGURATIONINFORMATION,ANDSENSITIVEFILESVIAIMTHISDATACANBESTOLENWITHOUTABREACHOFTHEACTUALSYSTEMANDWITHOUTTHEKNOWLEDGEOFTHEIMUSERMOREIMPORTANTLY,THERESULTANTDAMAGEDUETOINFORMATIONDISCLOSURECANOUTWEIGHTHEDIRECTDAMAGEDUETOAMALICIOUSTHREATOTHERTHREATSAREHIJACKINGIM,SESSIONS,IMPERSONATINGOTHERUSERS,MALICIOUSLYPROXYINGDATA,SNIFFINGNETWORKTRAFFIC,PASSWORDTHEFT,ANDEXPORTINGDATAVIAIM,ALLIMPORTANTASSETSTOASPYWHOWANTSTOEXPLOITIM8INSUPPORTOFVARIOUSENTERPRISEITINITIATIVE,SELF/RECOMMEND,CUSTOMIZE,IMPLEMENT,DOCUMENT,ANDTRANSITIONTOOPERATIONSREUSABLETECHNICALSECURITYSERVICECOMPONENTS,INCLUDINGFIREWALLSYSTEMS,INTRUSIONDETECTIONSYSTEMS,AUTHENTICATIONSYSTEMS,AUTHORIZATIONSYSTEMS,AUDITTRAILMANAGEMENTSYSTEMS,VIRUSDETECTIONANDPREVENTIONSYSTEMS,CRYPTOGRAPHICSYSTEMS,ANDMANYOTHERS8MOSTCOMMUNICATIONSINIMSYSTEMSARECLIENTSERVERBASED,WHEREEACHUSERSHARESASECRET,USERCHOSENOFTEN“WEAK”PASSWORDWITHTHEIMSERVERAPASSWORDHASHISGENERALLYEXCHANGEDBETWEENACLIENTANDASERVERFORAUTHENTICATIONMESSAGESAMONGUSERSAREALSOTYPICALLYRELAYEDTHROUGHTHESERVERMAINLYTOAVOIDFIREWALLISSUESHOWEVER,PURELYPEERTOPEERCOMMUNICATIONSALSOOCCURINSOMESITUATIONSEGAUDIO/VIDEOCHAT,FILETRANSFERCOMMUNICATIONSOCCURMOSTLYOVERTCPHOWEVER,UDPISSOMETIMESUSEDINPEERTOPEERCONNECTIONSALSO,SSLISUSEDINSOMECORPORATEIMSERVICESEGREUTERSMESSAGING9ANDINTHEAUTHENTICATIONPHASEOFTHECURRENTLYAVAILABLEMSNPROTOCOLWHILETHEIMSERVERAPPEARSTOBEASINGLEENTITYTOACLIENT,ITMAYBEAGROUPOFSERVERSCONTROLLEDBYASINGLEIMSERVICEPROVIDER,ORACOLLECTIONOFSERVERSFROMINDEPENDENTIMSERVICEPROVIDERSIFUSERAWANTSTOCOMMUNICATEINSTANTLYWITHUSERB,BOTHMUSTLOGINTOHESAMEIMSERVICEMESSAGESFROMATOBWILLBEDELIVEREDBYTHESERVERDEPENDINGONBSPRIVACYSETTINGSFORDIRECTCOMMUNICATIONSBETWEENAANDB,THESERVERPROVIDESNECESSARYINFORMATIONEGNETWORKADDRESSTOEACHPARTYFIGURE3SHOWSTHESTANDARDIMCOMMUNICATIONSMODELFORSINGLEANDMULTIPLESERVERS14TOENSURECONFIDENTIALITYREQUIREMENTS,THECOMMUNICATIONBETWEENTHECLIENTSISPROTECTEDBYENDTOENDENCRYPTIONATAPPLICATIONLEVELADDITIONALSECURITYMECHANISMSAREINCLUDED,BASEDONTHESOLUTIONSIMPLEMENTEDINASYSTEMFORCOMMUNICATINGSENSITIVEINFORMATIONBETWEENINSECUREANDSECURENETWORKS,DEVELOPEDBYNST20ASSHOWNINFIGURE4,THENETWORKUSEDBYHEALTHCAREWORKERSISSEPARATEDINTODIFFERENTZONESWITHCORRESPONDINGSECURITYLEVELSTHESECUREZONE,THEINTERNALZONE,ADEMILITARIZEDZONEDMZ,ANDTHEOPENINTERNETTHELOCALNETWORKINTHEHOSPITALISREGARDEDASECUREZONEITISSEPARATEDFROMTHEHEALTHCARENETWORKBYFIREWALLSOLUTIONSTHENORWEGIANHEALTHCARENETWORKCONNECTSALARGENUMBEROFHEALTHCAREINSTITUTIONSITISINTHISCASEREGARDEDANINTERNALZONETHEHEALTHCARENETWORKISSEPARATEDFROMTHEOPENINTERNETBYADOUBLESETOFFIREWALLSOLUTIONSTHEDMZISATTHEINTERFACEBETWEENTHEHEALTHCARENETWORKANDTHEINTERNET54INSTANTMESSAGINGSOFTWAREARCHITECTUREOLLYISAWEBAPPLICATIONBUILTUSINGTHEAJAXASYNCHRONOUSJAVASCRIPTANDXMLPROTOCOLFUNCTIONALITYISACCESSEDTHROUGHASINGLEWEBPAGE,THECONTENTSOFWHICHAREUPDATEDTOREFLECTUSERACTIONSMUCHOFTHEAPPLICATIONLOGICISIMPLEMENTEDINTHEBROWSERONTHECLIENTSIDEAMYSQLDATABASEISUSETOTRACKTHEPRESENCEOFUSERS,ANDTOMAINTAINADETAILEDHISTORYOFINTERACTIONTHROUGHTHETOOLCHATMESSAGES,LOGIN/OUTSANDPERIODSOFACTIVITY/INACTIVITYARERECORDEDSERVERSIDEFUNCTIONALITYISIMPLEMENTEDATOPRUBYONRAILS,APOPULAROPENSOURCEWEBDEVELOPMENTFRAMEWORKBUILTINTHERUBYPROGRAMMINGLANGUAGETHISLAYERMANAGESAUTHENTICATIONOFUSERS,ANDEXPOSESSERVICEURLSUSUALLYSERVINGDATAASJSONTOTHEAJAX/JAVASCRIPTCLIENTEGTHECLIENTQUERIESASPECIFICURLFORCHATMESSAGESRECORDEDSINCETHECLIENTLASTPOLLEDTHESERVER,THESERVERRETURNSCHATMESSAGESASJSONDATATHEBULKOFTHEAPPLICATIONISIMPLEMENTEDINJAVASCRIPTINTHECLIENTWEBBROWSERTHEDOJOJAVASCRIPTLIBRARYISUSEDFORLAYOUTANDINTERFACEWIDGETS,ANDTOPROVIDEACROSSBROWSERCOMPATIBLEPLATFORMFOREVENTHANDLINGANDAJAXREQUESTS13WITHTHISINFRASTRUCTUREINPLACE,LETUSCONSIDERAOLUSERAWHOWISHESTOCOMMUNICATEWITHYAHOOUSERYFORTHEFIRSTTIMETHEFOLLOWINGSTEPSWILLTAKEPLACESEEFIGURE61INITIALCONTACTASGATEWAYINTERCEPTSABUDDYADDITIONREQUESTFROMAFORYYAHOOTHEGATEWAYTHENLOOKSUPYYAHOOINTHEDHTTO_NDTHEIPADDRESSOFYSGATEWAY2ASKFORPERMISSIONASGATEWAYSENDSTHEPERMISSIONREQUESTTOYSGATEWAYIFUSERYISONLINE,YACCEPTSORDENIESTHEBUDDYADDITIONREQUEST,ANDTHERESPONSEISCOMMUNICATEDBACKVIATHEGATEWAYSTOAIFUSERYISNOTONLINE,INFORMATIONABOUTTHEPENDINGBUDDYADDITIONISSTOREDINTHEDHTTHEREQUESTWILLBEPROCESSEDWHENYCOMESBACKONLINEANDITSGATEWAYCHECKSTHEDHTFORSUCHPENDINGREQUESTS3SENDIMASSUMINGTHATYACCEPTS,AADDSYTOITSBUDDYLISTNOWASSUMETHATASENDSANIMTOYTHEIMISINTERCEPTEDBYASGATEWAYASUSUAL4TRANSLATETOXMPPASGATEWAYTRANSLATESFROMOSCARTOXMPPANDSENDSTHEXMPPMESSAGETOYSGATEWAY5TRANSLATEFROMXMPPYSGATEWAYTRANSLATESFROMXMPPTOYAHOO6RECEIVEIMUSERYRECEIVESANIMFROMAAOLTHEIMLOOKSEXACTLYLIKEASTANDARDIMEXCEPTFORTHEMODIFIEDUSERNAME125REFERENCE1ANDREACHTEMEIER2002INSTANTMESSAGINGSECURITY2BARON,NAOMIS,ANDRICHLING2003“IMANDSMSALINGUISTICCOMPARISON”PAPERPRESENTEDATTHEFOURTHINTERNATIONALCONFERENCEOFTHEASSOCIATIONOFINTERNETRESEARCHERS,TORONTO,OCT1619AVAILABLEATHTTP/JLSSAGEPUBCOM/CGI/REPRINT/23/4/397PDF3BPINKASANDTSANDER,“SECURINGPASSWORDSAGAINSTDICTIONARYATTACKS,”INPROCEEDINGSOFTHE9THACMCONFERENCEONCOMPUTERANDCOMMUNICATIONSSECURITYACMPRESS,2002,PP1611704ERLENDBONES,PERHASVOLD,EVAHENRIKSEN,ANDTHOMASSTRANDENCESRISKANALYSISOFINFORMATIONSECURITYINAMOBILEINSTANTMESSAGINGANDPRESENCESYSTEMFORHEALTHCAREINTERNATIONALJOURNALOFMEDICALINFORMATICS,20065GLAWTON,“INSTANTMESSAGINGPUTSONABUSINESSSUIT,”IEEECOMPUTERSOCIETYCOMPUTERMAGAZINE,MAR2003,HTTP/WWWCOMPUTERORG/COMPUTER/HOMEPAGE/0303/LAWTON/ACCESSEDDEC8,20036GRINTER,REBECCAE,ANDLEYSIAPALEN2002“INSTANTMESSAGINGINTEENLIFE”INCSCW2002PROCEEDINGSOFTHEACM2002CONFERENCEONCOMPUTERSUPPORTEDCOOPERATIVEWORK,2130NEWYORKASSOCFORCOMPUTINGMACHINERYAVAILABLEATHTTP/WWWCSCOLORADOEDU/PALEN/PAPERS/GRINTERPALENIMPDF7HERRING,SUSANC2003“GENDERANDPOWERINONLINECOMMUNICATION”INTHEHANDBOOKOFLANGUAGEANDGENDER,EDJANETHOLMESANDMIRIAMMEYEHOFF,20228MALDEN,MASSBLACKWELL8HOWARDASCHMIDTINSTANTMESSAGINGSECURITYELSEVIERDIGITALPRESS9KLAKSHMINARAYANAN,ISTOICA,ANDKWEHRLESUPPORTFORSERVICECOMPOSITIONINI3INPROCEEDINGSOFMULTIMEDIA,200410LING,RICH,ANDNAOMISBARON2007“TEXTMESSAGINGANDIMLINGUISTICCOMPARISONOFAMERICANCOLLEGEDATA”JOURNALOFLANGUAGEANDSOCIALPSYCHOLOGY262919811MARIANNEFOLEYINSTANTMESSAGINGREFERENCEINANACADEMICLIBRARYACASESTUDYJANUARY,200212MARTIMOTOYAMAANDGEORGEVARGHESECROSSTALKSCALABLYINTERCONNECTINGI
温馨提示
- 1. 本站所有资源如无特殊说明,都需要本地电脑安装OFFICE2007和PDF阅读器。图纸软件为CAD,CAXA,PROE,UG,SolidWorks等.压缩文件请下载最新的WinRAR软件解压。
- 2. 本站的文档不包含任何第三方提供的附件图纸等,如果需要附件,请联系上传者。文件的所有权益归上传用户所有。
- 3. 本站RAR压缩包中若带图纸,网页内容里面会有图纸预览,若没有图纸预览就没有图纸。
- 4. 未经权益所有人同意不得将文件中的内容挪作商业或盈利用途。
- 5. 人人文库网仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对用户上传分享的文档内容本身不做任何修改或编辑,并不能对任何下载内容负责。
- 6. 下载文件中如有侵权或不适当内容,请与我们联系,我们立即纠正。
- 7. 本站不保证下载资源的准确性、安全性和完整性, 同时也不承担用户因使用这些下载资源对自己和他人造成任何形式的伤害或损失。
最新文档
- 房屋出租合同 (14篇)
- 家具零售合同协议
- 配送回单系统使用合同
- 2025曲靖中考爨文化冲刺卷(语文+历史)
- 科技企业面试实战技巧
- 庆祝99周年党课方案
- 2025重庆长寿区晏家街道办事处公益岗招聘5人备考题库附答案详解(巩固)
- 2026中国建设银行建信理财秋季校园招聘9人备考题库(深圳)及答案详解(名师系列)
- 2025年河北唐山玉田县公开招聘社区工作者41人备考题库含答案详解(培优b卷)
- 2025重庆市万盛经开区交通运输局招聘公益岗7人备考题库及答案详解(有一套)
- 扬州市不动产登记申请书
- TISA 004-2021 沙棘果油生产标准
- GB/T 3766-2015液压传动系统及其元件的通用规则和安全要求
- GB/T 28733-2012固体生物质燃料全水分测定方法
- GB/T 1226-2017一般压力表
- GB 16668-2010干粉灭火系统及部件通用技术条件
- GA/T 508-2004道路交通信号倒计时显示器
- GA 1517-2018金银珠宝营业场所安全防范要求
- 五年级上册第13讲 等高模型课件
- 9苗木养护质量验收记录
- 企业督查督办管理新版制度
评论
0/150
提交评论