Feng DING,Yong DENG,Jun-yi SHEN

DOI: https://doi.org/10.3969/j.issn.1000-7180.2000.04.003

2000-01-01

Abstract:This paper provides a method of implementing security mechanism in program in according to the features of a multi-user database application system. It is the method that set the password as a property of each table, and the properly must be compared with a password when operating table. The result is that every user can query data, but only the certain user who has the password can do the operation of insert, update and delete.

华国尧,周波

DOI: https://doi.org/10.3969/j.issn.1000-3428.2005.03.023

2005-01-01

Abstract:This paper presents a method to design and implement a lock management system in engineering database. This method supports multiple granularity lock, automatic lock and automatic lock escalation. Two-phase locking protocol and tree locking protocol can be implemented on this system.

WANG Jun

DOI: https://doi.org/10.3969/j.issn.1009-3044.2012.23.013

2012-01-01

Abstract:Along with the social informatization is getting higher and higher,the data stored in the DBMS to security requirements are also gradually improve.Systems generally will require the user to input the password,that is,by setting a password to protect the security of the database.It’s talking about commonly used methods of password analysis about database encryption.It’s obvious that encryption algorithm has been greatly enhanced in the new version through to the contrast analysis between an encrypted database of Access 2003 and an encrypt ed database of Access 2010,improved the password security of Access 2010.

杨树国,薛凯

DOI: https://doi.org/10.3969/j.issn.1671-1815.2010.02.044

2010-01-01

Abstract:Since the database is created,its security has aroused many people's attention,authentication is the most important part to protect their safety,in order to prevent the password from leaking,the traditional 26-bit affine algorithm extended to 31-bit have been transformed,and using Java a password encryption and decryption are designed that can change over time automatically.If it is drawn into the database password verification procedure,the safety would have a significant improve.

Ping Wang,Ding Wang,Xinyi Huang

DOI: https://doi.org/10.7544/issn1000-1239.2016.20160483

2016-01-01

Abstract:Identity authentication is the first line of defense for information systems ,and passwords are the most widely used authentication method .Though there are a number of issues in passwords regarding security and usability , and various alternative authentication methods have also been successively proposed , password‐based authentication will remain the dominant method in the foreseeable future due to its simplicity ,low cost and easiness to change .T hus ,this topic has attracted extensive interests from worldwide researchers ,and many important results have been revealed .This work begins with the introduction of users’ vulnerable behaviors and details the password characteristics ,distribution and reuse rate .Next we summarize the primary cracking algorithms that have appeared in the past 30 years , and classify them into groups in terms of the difference in dependence on what information is exploited by the attacker .Then ,we revisit the various statistical‐based evaluation metrics for measuring the strength of password distributions .Further ,we compare the state‐of‐the‐art password strength meters .Finally ,we summarize our results and outline some future research trends .

Qing-yang ZHANG,Yang YANG,Jiu-jun CHENG,Jing-xue LIAO

DOI: https://doi.org/10.3969/j.issn.1671-1122.2014.11.008

2014-01-01

Abstract:With the rapid development of information technology, the Internet area has inundated with information security problems. With the maturity of hacker technology, the invasion of a personal computer has become an easy task, so personal computer privacy and permission management have become more seriously in our daily life. Traditional methods that only use login password would threat to computer security and privacy when owner’s friends or colleagues use his computer. Based on the RSA encryption mode, we design a dynamic password encryption algorithm and propose a mechanism on computer access permission management mechanism. Firstly, the mechanism could increase the difficulty of password cracking and improve the security of encryption with the use of dynamic password created by both PC and mobile terminal. We combine plaintext coding with RSA encryption algorithm for dynamic password in order to avoid some problems of dynamic password generated by time seed algorithm. In addition, we added control information into the dynamic password, and loaded the filter driver of file in the kernel after the screen was successfully unlocked, therefore, owner’s private directory would be safer and the system protection grade of sensitive documents would be higher. The mechanism we implemented is aimed to solve as mall and awkward problem in our daily life. Experimental results show that mechanism on computer access permission management based on the dynamic password can solve the problem of personal privacy and access permission management effectively, thus it has a good prospect of application.

Jiujun Cheng,Yang Yang,Jianyu Shao,Jingxue Liao

DOI: https://doi.org/10.14257/ijsia.2015.9.11.37

2015-01-01

International Journal of Security and Its Applications

Abstract:With the rapid development of information technology, personal computer privacy and permission management are becoming more and more important. Based on RSA encryption algorithm, we design a dynamic password encryption and codec algorithm, and propose a mechanism on computer access permission management which is capable of dealing with situations both online and offline. In the offline mode, administrators can authenticate users by matching their contact information to that registered in administrators' mobile terminal. Generated by the co-work of a personal computer and a mobile terminal, the dynamic password makes cracking the password a trickier task. Permission control information is also added into the dynamic password, and file filter system will be loaded once the screen is successfully unlocked, so as to protect private directories or files from being accessed without authorization. In online mode, the system provides real-time video for identity verification, which makes the system more secure and convenient. Experiment results show that this dynamic password based mechanism on computer access permission management is efficient in dealing with existing problems in personal privacy and access permission management.

ZHOU Jing-li,WANG Yu,YU Sheng-sheng

DOI: https://doi.org/10.3969/j.issn.1001-3695.2006.08.028

2006-01-01

Abstract:To solve the disadvantage of Web entry method of SSL VPN,a method of using dynamic password to entry is(pre-)(sented.)It can be used to prevent the password from being stolen and cracked,thus the security of SSL VPN system is improved.

Deyu ZHANG,Lian XU

2013-01-01

Abstract:Authentication as a first line of defense to protect network security,has been widely used in a variety of systems. On the basis of analysis of the shortcomings of traditional dynamic password authentication method,an improved Two-way dynamic password authentication method is proposed to implement mutual trust by increasing a Two-way authentication function,so it can prevent the personating attack. In addition,it adopts small computational calculation methods,which is easy to be accomplished,and it can be applied to the distributed network environment.

Zhao Mingwei,Ji Xiaoyu,Jiang Rongan

DOI: https://doi.org/10.3969/j.issn.1000-386X.2009.05.085

2009-01-01

Abstract:Compared with traditional static password system,the identity authentication system with dynamic password is more secure.Based on ElGamal's private key cryptosystem and challenge-response mechanism,this paper presents a new identity authentication scheme with dynamic password which integrates the smart card and the fingerprint features.The bidirectional authentication between the clients and the server is also achieved.This scheme is effective in preventing reply attack and masquerade attack.

Zhang Zhen,Dai Guanzhong,Liu Hang,Yang Yanyan

DOI: https://doi.org/10.16526/j.cnki.11-4762/tp.2008.10.024

2008-01-01

Abstract:Aiming at the problem that encrypted data is beyond retrieve when user's secret key is lost and the insufficiency of traditional database's protecting mode,a safe and resumable secret key management mechanism is developed based on smart card and modern encryp- tion technology.This scheme can ensure the secret key's safety and availability without the third party's participation.It can also ensure no institution or individual can obtain secret key except the user.It can resume the secret key safely when the user loses the secret key.We enhance the database's safety by using a special encryption technology.The mechanism is proved safe and worthy of being popularized through security analysis.

刘大昕,杨小平,王桐

DOI: https://doi.org/10.3969/j.issn.1009-671x.2004.01.014

2004-01-01

Abstract:According to the theory of a mechanism of dynamic password authentication,an enhanced method combined with information of computer hardware is proposed and realized,which is useful in some places where the demand of security is more higher.

Mingwei Zhao,Xiaochen Yu

DOI: https://doi.org/10.3969/j.issn.1000-386x.2015.10.076

2015-01-01

Abstract:Compared with traditional static password identity authentication technology,the identity authentication system with dynamic password is more secure.Current schemes of dynamic password authentication have difficulties in heavy computation load and key storage because of the use of the public key encryption system mostly.In view of this,we propose a new identity authentication scheme with dynamic password which combines hash function,symmetric encryption mechanism and Challenge /Response mechanism.At the same time,we carry out the performance test and analysis on the scheme.Experimental results show that the scheme not only realises mutual authentication between server and clients under the network environment,but also has the advantages of high safety,strong practicability,low cost etc., which can be used as the identity authentication in most insecure network channels.

Qian WANG,Zhi-xiang ZHU,Chen-yu SHI,Lei ZHANG

DOI: https://doi.org/10.3969/j.issn.1673-629X.2014.01.037

2014-01-01

Abstract:In order to implement the secure storage of the system transaction data,the encryption and decryption engine is used to encrypt the data that transmitted from the application terminal. The transfer commands of different users can be identified by the user ID,and the user's private key can be used to achieve encrypted storage. The scheme can protect the storage security of user data and isolate data in cloud computing platform. When the users from application terminal query the encrypted data,the encryption and decryption engine server-side will read the user's private key from the buffer according to the user ID,then the server-side will decrypt the data and return clear text to application terminal. When the encryption and decryption system is integrated with a third-party application,the user-defined en-cryption algorithm and encryption vector information will be loaded in the encryption and decryption engine,then the sensitive data will be encrypted according to the user's own private key,which can guarantee the secure storage of sensitive data and achieve isolation for business data of different users. Finally,the integration with the population database system of a city is used as an example to verify the feasibility of the scheme.

Yan-yan Wang,Jia-yong Liu,Feng-xia Xiao,Jing Dan

DOI: https://doi.org/10.1016/j.comcom.2008.11.008

IF: 5.047

2009-01-01

Computer Communications

Abstract:In 2004, Das, Saxena and Gulati proposed a dynamic ID-based remote user authentication scheme. This scheme allows users to change and choose passwords freely, and the server does not maintain any verifier table. It is also secure to against ID-theft, replay attacks and insider attacks and so on. However, research has been done to point that it is completely insecure for its independent of the password. Furthermore, it did not achieve mutual authentication and could not resist impersonate remote server attack. In this paper, an enhanced password authentication scheme which still keeps the merits of the original scheme was presented. Security analysis proved that the improved scheme is more secure and practical.

Qin Jun,Wang Zhengfei,Tan Zijing,Wang Wei,Shi Bole

DOI: https://doi.org/10.3969/j.issn.1000-386X.2006.12.002

2006-01-01

Abstract:The protection of sensitive data in database is an important aspect on information security.It becomes more and more exigent to incorporate security features into DBMS.In this paper,a methed is presented that makes DBMS support database encryption by modifying the implementation of DBMS.This method doesn't affect the functionality of DBMS and decreases the performance of DBMS little.This paper also presents correlative key management architecture that makes the management of key secure and effective.Finally,the performance of database encryption is assessed by experimenting on TPC-H data set.

Zhang Degang,Dai Guanzhong,Liu Hang,Shi Feng,Zhang Zhen

DOI: https://doi.org/10.16526/j.cnki.11-4762/tp.2008.11.020

2008-01-01

Abstract:This paper introduces a high security mechanism for key management to solve the problems,which are derived by key exposure and exploit of traditional database storage.In this mechanism,random encryption key,asymmetric encryption algorithm and one-time key for database encryption are used to ensure the key's safety in generation,storage,backup and recovery.The safety analysis demonstrates that,this mechanism can keep key secure,protect key from being obtained illegally,recover key securely when necessary,and be worthy of being popularized.

WANG Bin,LIU Gang

DOI: https://doi.org/10.3969/j.issn.1000-7024.2007.12.014

2007-01-01

Abstract:By studying the dynamic password authentication scheme and analyzing the new dynamic password authentication scheme which can resist jacking connection attack mentioned in Ref.[1],the way which protects the key information // is not good enough,although the password in this scheme is dynamic,this scheme can not resist the imitate server attack.To solve those problems,a improved scheme is proposed using Diffie-Hellman key exchange algorithm,the new scheme not only can conquer the security problem of the original scheme but also holds all security characteristics of the original scheme.So the computational complexity is decreased greatly,and the security characteristics is increased.

陈平,申永军,徐华龙

DOI: https://doi.org/10.3969/j.issn.1000-3428.2008.20.052

2008-01-01

Abstract:This paper analyzes one-time-password and graphical password,and discusses some shortcomings of graphical password in the case of authentication through an open network.This paper proposes an improved method of high feasibility,reliability to remedy these shortcomings which based on the one-time-password,which enhances the security of the password and avoid replay attack and shoulder-surfing attack.Similar techniques can be used to boost up the security of the application security systems for more flexible application.

Dayuan XIONG,Huize WANG,Chengsheng LIU,Changyuan YANG

DOI: https://doi.org/10.13413/j.cnki.jdxblxb.2014.05.29

2014-01-01

Abstract:To solve the safety issues,we proposed a new way of automatic safety protection for user cookies.The cookie was stored in encrypted removable storage devices,and then the fingerprint identification recognition was carried out.This enables the program full background operation:cookie automatic move,transfer,storage and deletion.In this process,users were allowed to conveniently perform network login on different computers in the same cookie application environment.This new method can effectively protect the privacy,and create more convenience for users.