- 學位論文
以SET在校園網路上實現電子成績檔案之安全傳遞
Secure Electronic Score Files Transmission via Campus Networks Based on SET
摘要
摘要 在本論文中,我們提出了應用安全電子交易於校園網路電子成績檔案傳送的方法。透過如此安全機制,使得系所、課務組、註冊組及老師皆能安全且方便地傳送課程表及成績單。 為什麼要以安全電子交易協定為基礎呢?簡單地說,因為它是可以進行三方認證,具公正效果且安全性高。 在這方法中,首先系所、課務組、註冊組及老師送訊息前必須先向認證中心註冊來完成身份確認並取得電子證書。然後在學期開始以前,系所送課程表給課務組,課務組先回送給系所課程表證明書,等課務組作業完成之後再送給系所課程時間表、教室編排表、點名簿及授課證明,當系所收到這些電子檔案資料後交給老師。在學期末時,老師送成績單給註冊組,註冊組先回送給老師成績單證明書,之後向課務組請求授權,等授權完成後才確認此份成績單的有效性。 在一般協定中,我們常應用以下的方法來保證資料的私密性、完整性及確認身份。 1.應用訊息加密來保證私密性。 2.應用數位簽署來保證完整性及認證性。 3.應用電子證書來強化認證性。 我們研究的主要結果如下:(1)確保成績單的機密性及隨伴成績單的授課證明之機密性(2)認證中心機制,具公正效果且安全性較高(3)可驗證使用者的合法性(4)確保傳送資料的正確性(5)確保安全系統設計和安全性(6)使用明確的協定與訊息格式,以提供不同軟硬體間互相運作能力。 我們相信本論文的研究結果,對於在如下所述的未來研究領域上將有所助益:(1)擴展校園網路的其他重要資料傳送(2) 使用端點對端點的互相認證以提昇整體效能(3)以電腦系統簡化協定及改善運作速度。。
並列摘要
Abstract In this thesis, we propose a scheme that applies SET to electronic score files transmission via campus networks. By way of such secure protocols, the electronic lesson table files and electronic score files can be transmitted among the departments, curriculum section, registrar’s section and teachers securely and conveniently. Why do we design the secure electronic score files transmission via campus networks based on SET? To be brief, because it can proceed authentication of three ends and high security. In the scheme, at first, the departments, curriculum section, registrar’s section and teachers must register with a CA before they send messages to achieve identity authentication. Then, before the term beginning, the department sends electronic lesson table files to the curriculum section, and the curriculum section sends the references of electronic lesson table files to the department right now via a secure network. After the curriculum section finishes the corresponding processes, it sends the electronic school timetables, classroom tables, roll books, giving lessons proofs to the departments. When the departments receive the files, it sends to the corresponding teachers. At the end of term, the teacher sends his electronic score files to the registrar’s section, the registrar’s section sends the reference of electronic score files to the teacher right now via a secure network. Then the registrar’s section requests authorization to the curriculum section to assure that the electronic score files is valid. In the proposed protocols, we apply the following means to ensure confidentiality, integrity of data and authentication of identity. 1.Confidentiality is ensured by the use of message encryption. 2.Integrity and authentication are ensured by the use of digital signatures. 3.Authentication is further strengthened by the use of certificates. The main results of our study are as follows. (1) It ensures the confidentiality of the electronic score files with electronic giving lessons proof files. (2) The CA possesses just effect and high security. (3) It provides the legitimacy of user’s authentication. (4) It ensures the integrity of all transmitted data. (5) It ensures that the design of mechanisms is secure. (6) The usage of precise protocols and message formats to provide interoperability among software and hardware. It is believed that the results of our study in this thesis will be much helpful and feasible for the future research as follows. (1)Expand our results to other important data transmission via campus networks. (2)Use the end to end authentication discretely to promote the overall performance. (3)Study the possibility to build our results in a computer system to the effectiveness.