A New Design of Secure RPC for Future Intelligent Networks

• Main Authors: Lin, Jing-pei, 林京沛
• Other Authors: Kuo, Geng-seng
• Format: Others
• Language: zh-TW
• Published: 1993
• Online Access: http://ndltd.ncl.edu.tw/handle/78600050643697499811

碩士 === 國立中央大學 === 資訊管理研究所 === 81 === @　 網路技術不斷創新，促使未來電信網路將轉為數據通訊，提供多樣化 的多媒體資訊服務，而現存之電腦網路將隨需求不斷擴張，與電信網路整 合成一數位網路。致使網路範圍擴大、使用者增多、資訊服務品質的需求 也隨之提升，使得現存之安全遠端程式呼叫(SRPC)在安全性與效率方面皆 面臨嚴厲的挑戰。　　本論文之主要成果是首先提出一嶄新之物件活動 圖(OAD)表示方式，作為設計分散式系統軟體之輔助工具，來實際輔助 SRPC之設計；透過物件間相互活動關係之分析，減少軟體模組之不良切割 。接著；發展一新SRPC的架構，避免使用 Name Server與 Authentication Server，提出新SRPC之設計，證明其通訊協定功能之正 確性，以改進世界上現存之SRPC，使得其不但能滿足未來網路上安全性之 需求，並改善其執行效率，增進其執行方便。另分析比較現今世界上存在 之五種SRPC：Amoeba、Andrew、Courier、Kerberos、Sun與新設計之SRPC ，證實新設計之SRPC較現存者為佳，不僅使用之通訊協定較為簡單，且不 依賴Timestamp，使得加密後的訊息較難以被侵入者解開，且不必考慮 Client與Server時間同步的問題。　　因為現存SRPC皆使用DES作為加密 系統，進而對DES的架構、內部詳細之設計、運作方式、特性加以深入探 討，並整理、分析、比較與改進解DES key之方法，以便找出DES在安全上 需補救之弱點。 As the data communication networks being innovated , telecommunication networks will be spurred to be digitized for supporting various multimedia information services in the future, and the computer networks will also be expanded and integrated with data communication networks in demand. Therefore, networks are spanned, number of users are increased, and the qualities of information services are getting better. Both in security and efficiency, the current SRPCs (Secure RPCs) are in face of critical defy. In this paper, a new representation style for assisting modeling the design of distributed system software, called OAD (Object-Activity Diagram), is proposed to really assist the design of SRPC, and to minimize ill decomposition of software by analyzing the activity relationships between objects. Also a new SRPC architecture is developed without using name server and authentication server. To improve current SRPC, the new design of SRPC is proposed, and the correctness of its protocol functions are also proved. Therefore, the future network security demands are satisfied, and both the efficiency and convenience of execution are also enhanced. In addition, the five current SRPCs: Amoeba, Andrew, Courier, Kerberos, and Sun, and the new SRPC design are analyzed and compared, sustaining the advantages of the new design such as simplified protocols and minimized use of encrypted timestamps. Since DES (Data Encryption Standard) has been used in current SRPCs, the structure, detail design, operations, and characteristics of DES are discussed. The methods of breaking DES keys are also codified, analyzed, compared, and improved to find out the security weakness of DES.