电子政务应用系统中的电子签章的研究与实现

江苏科技大学硕士学位论文电子政务应用系统中的电子签章的研究与实现姓名：曹明申请学位级别：硕士专业：计算机科学技术指导教师：刘镇20070610I1RSA(ECC)2(PKI)34PKIAbstractIIAbstractCurrentlyourgovernmentisvigorouslypromotingelectronicgovernmentandelectronicbusiness,thedevelopmentofelectronicgovernmenthasnotonlyimprovedtheefficiency,costsavings,fromthetechnicalmeans,itcanalsoachievesomefunctionwhichpaperfilescannot..Withthedevelopmentofelectronicgovernment,featuresofmodernelectronicgovernmentapplyingsystemaremulti-departments,one-stationserviceandseparatingintointernalandexternalnetwork.Itisofgreatsignificancetostudyandimplementelectronicsealinthissystem.Fromtheaspectofconcept,electronicsealistobeachievedinthesamefunctionoftraditionalseal,basedondigitalsignatureandpublickeyinfrastructure,itexistsinelectronicfilesinelectronicforms,mainlyresolvestheproblemofelectronicdocument'sstampandsignature,andassurestheauthenticityintegrity,reliability,non-repudiationandlegalityofelectronicdocuments.Themainworkinthearticleisasfollows:1Undertheanalysisofthecurrentstatusofelectronicsealtechnology,thisarticlestudiesvarioussupportingtechnologiesofelectronicdocumentsealsystem,includingdigitalsignatures.Atthesametime,itinvestigatesandcomparestheRSAarithmeticandtheECCarithmeticinthepaper.2ItstudiesPublicKeyInfrastructure(PKI).ItisthesuitofsafetyInfrastructurewhichofferidentityauthenticationanddistinguish,assureinformationconfidentialityandintegrality,andpreventthesentorreceivedinformationfromdenyingundertheopennetwork.3.Wefirstlystudytheelectronicsealinthemulti-departments,onestationservicedigitalsystemwhichisseparatedbyinternalandexternalnetworkandworkoutthestructureofthewholesystem.Thenweanalyzethedigitalsealmanagementsystemandthedigitalsealapplicationsystemandputforwardthedesignprojectofthesystem.Inthissection,wealsoshowtheflowofapplyingdigitalcertificate,applyingdigitalseal,digitalsignatureanddocumentvalidity.4.Wedetailtheimplementationoftheelectronicsealsystemofelectronicgovernmentservicesystemandshowtheeffectofthesystem.Keywordsdigitalsignature;electronicseal;PKI111Internet[1][2]InternetINTERNET[3]WEB1.1:DBDMZDMZwebDBOAInternetDBwebDMZ1.1212[4][5]95:96[6]20009795982000999797992000200111[7]131RSA(ECC)2(PKI)33414RSAECCPKI4211C=EK1M2M=DK2CMCEDK1K2K1K2K1K2DESIDEA()2251976DifeHeilman1976ED3:1D(E(Pa))=Pa2ED3EDEPaDPa[8]RSARSADSADESIDEARSA23128612812345[9]2.3.11,,,,,,,,,,,,,,,[10]2publickey)privatekey,CACertificationAuthority7[11]2.3.2(hash)Hash[12]DECMillicentCyberCashCyberCoinHashHashMD5RFC1321SHA-1FIPSPUB180-1MD512816SHA-116020HashFingerPrint2.3.3MD5SHAMD5Rivest,1992SHA-1NIST,1993MD5RonaldRivest448512864512128512128IBMDESSRivest128MD5[13]MD5SHA-1NISTNSADSADataSignatureAlgorithm264160bitbrute-forceSHA-1MD4,160bit532MD5420MD5[14]2.3.4Hash[15]2.1SHA1SHA128BITS12S1F3KP14KFP25P1P26P2KF7FS18KP19SHAS2910S1S2[16]2.11031IS07498-2:()(DSS,FIPS186-2)[17]:PKI[18]:HashDSSRSAECCHASHMD2,MDS,SHA-1DESRSA32RSA1977MIT(MassachusettsInstituteofTechnology)RonalRivest,AdiShamirLenAdleman[19]Rivest,ShamirAdlernanRSADiffie-Hellman[20]RSA3.2.1RSA1.RSARSAnpq:n=pq,ϕ(n)=(p-1)(q-1)k={(n,p,q,d,e)|n=pq,pqde≡1modϕ(n),e11}k=(n,p,q,d,e)kE(x)≡bxmodn,nxZ∈kD(x)≡aymodn,nyZ∈,nZnbp,qa.kEkDkD(kE(x))=x.2.RSARSA:Am:s≡kD(m)≡dmmodn,d,nAA;BAA:kE(s)≡kE(kD(m))≡()demmodnde≡1modϕ(n)de=lϕ(n)+1()nmϕ≡1modnkE(s)=()1lnmϕ+≡mmodnmsB,BAAAms.RSARSAMD5MD5[21]128MD5()(M,M)[22]3.2.2RSARSAMD5A;BAA;;A1.:RSA(1)MD512&(2)RSAO12.:RSA12;(1)RSA128O1(2)MD5;3.2.4RSARSAFermatFermat[23]o(32(log)n)nno(22(log)n)RSAxεmodn1cxεmodn211≤[]2logn+1o(32(log)n)RSA33(ECC:EllipticCurveCryptography)[24]NealKoblitzVictorMiller1985Pollardrhon(2)mn=234,2117,1.6x1023MIPSRSAn=20482x1020MIPSRSA2048ECC2349ECCECC133.3.11IEEEP1363:T=(q,FR,a,b,G,n,h)qGF(q),q2m;FRf(x)2F;q2y=3x+axb+,q2m232byxyxaxb+=++,a,b;G;nGh#()/qhEFn=nECCn2qFFE(11)ddn≤≤−Q=dG(G)qFGn3AmB,A:(1)B(E(qF,G,n,dQ));(2)mm∈qF;(3)[1,n-1]k;(4)kG=(1,1xy);(5)BkBQ=(2,2xy),2x=0,(3);(6)C=m2x×;(7)(11,,xyC)BBA(11,,xyC)(1)BdBd1122(,)(,)xyxy=qF12()x−;(2)m=C12()x−m3.3.2114ECCECCECDLP,[25]:Pohlig-HellmanPollard-p(qFpqEFqFrobeniutPE)MOVFRECDLP(anomalous)(q=mp,p≠2,3qEF2y=3x+axb+()qpEF∈pp=qPFrobeniust=1),SSSAECDLP2ECDLP:(1)Pollard-pEC#E(GF(q))160bit;(2)WeilTate130k≤≤,nkq-1();(3)Semaev-Smart-Satoh-Araki#E()qFq≠();(4)GF(2m)mGaudry,HessSmartml(l=4)Pollard'srhoECDLP3:(1)2Fmk≥l(2)CM(ComplexMultiplication)(3)a,bqF∈q324270ab+≠;q=2m0b≠u=#E(qF)n3Shanks's15baby-stepgaint-stepPollard'spPohlig-hellman#E(qF)(P)P,Pohlig-hellmanO(n)#E(qF)#E(qF):(1)F#E(qF)R.SchoolSchoolAtkinElkiesSEA(SchoolElkiesAtkin)Morain,LercierSEASatohSatoh-FGH(2)2F2Fmm=de,a2dF#E(2dF)#E(2deF)mm#E(2dF)4()k*P=P+P++PkPkP[26]()kP:kP(2mF):()kPKoblitzcurveskP34RSAECCRSARSA-(NFS)RSAECCECCPollardrhoECCRSAECCECCRSA16ECCRSA(3.1)(3.2)RSA/DSAECCRSA/ECCMIPS41051210651810768132611110102416071201020482101017810210006003513.1SecurityBuilder1.2BSAFE3.0163ECC(ms)1024RSA(ms)3.84708.32.1ECNRA228.43.0ECDSA9.9ECNRA12.710.7ECDSADIffile-Hellm7.31654.03.2RSA:1.ECC160ECC1024RSA,DSA210ECC204$bitRSA,DSA2.RSA(3)ECC()ECCRSA,DSAECCRSA,DSA3.ECCRSA,DSA17IC4.ECCECC5.(1)timestamp()(2)RSARSAPGP700SET1024RSACA2048RSA16IC1024RSARSAIC32