通信密码学课件.ppt

1、通信安全理论,课程概况,主讲教师陈惠芳信电楼217房间chenhf课程要求考试（开卷）总评分平时成绩15期末成绩85PPT：课程中心,CryptographyandNetworkSecurity密码编码学与网络安全,FourthEditionbyWilliamStallings,第1章引言,Background,InformationSecurityrequirementshavechangedinrecenttimestraditionallyprovidedbyphysicalandadministrativemechanismscomputeruserequiresautomatedto

2、olstoprotectfilesandotherstoredinformationuseofnetworksandcommunicationslinksrequiresmeasurestoprotectdataduringtransmission,Definitions,ComputerSecuritygenericnameforthecollectionoftoolsdesignedtoprotectdataandtothwarthackersNetworkSecuritymeasurestoprotectdataduringtheirtransmissionInternetSecurit

3、ymeasurestoprotectdataduringtheirtransmissionoveracollectionofinterconnectednetworks,AimofCourse,ourfocusisonInternetSecuritywhichconsistsofmeasurestodeter,prevent,detect,andcorrectsecurityviolationsthatinvolvethetransmissionneedprotectionfromdisclosure,tampering,ordestruction;benotarizedorwitnessed

4、;berecordedorlicensed,SecurityServices,X.800:“aserviceprovidedbyaprotocollayerofcommunicatingopensystems,whichensuresadequatesecurityofthesystemsorofdatatransfers”RFC2828:“aprocessingorcommunicationserviceprovidedbyasystemtogiveaspecifickindofprotectiontosystemresources”,SecurityServices(X.800),Auth

5、entication-assurancethatthecommunicatingentityistheoneclaimedAccessControl-preventionoftheunauthorizeduseofaresourceDataConfidentialityprotectionofdatafromunauthorizeddisclosureDataIntegrity-assurancethatdatareceivedisassentbyanauthorizedentityNon-Repudiation-protectionagainstdenialbyoneoftheparties

6、inacommunication,SecurityMechanism,featuredesignedtodetect,prevent,orrecoverfromasecurityattacknosinglemechanismthatwillsupportallservicesrequiredhoweveroneparticularelementunderliesmanyofthesecuritymechanismsinuse:cryptographictechniqueshenceourfocusonthistopic,SecurityMechanisms(X.800),specificsec

7、uritymechanisms:encipherment,digitalsignatures,accesscontrols,dataintegrity,authenticationexchange,trafficpadding,routingcontrol,notarizationpervasivesecuritymechanisms:trustedfunctionality,securitylabels,eventdetection,securityaudittrails,securityrecovery,ModelforNetworkSecurity,protocol,ModelforNetworkAccessSecurity,Summary,haveconsidereddefinitionsforc