检索结果-南通市图书馆

A formal model of fair exchange protocols

在线全文

同方期刊数据库

学校读者我要写书评

暂无评论

Science in china(Series F) 2005年第4期48卷 499-512页

作者： QING Sihan1,2,3.& LI Gaicheng1,2,3.1. Engineering research center for information {3. Technology, Institute of Software, Chinese Aca- demy of Sciences, Beijing 100080, china 2. Beijing Zhongke Ansheng Corporation of information Technology, Beijing 100080, china 3. Graduate School of the Chinese Academy of Sciences, Beijing 10003., china Engineering research center for information {3. Technology Institute of Software Chinese Academy of Sciences Beijing China Beijing Zhongke Ansheng Corporation of information Technology Beijing China Graduate School of the Chinese Academy of Sciences Beijing China

Based on the study of existing fair exchange protocols, this paper sets up an accurate formal model by stepwise refinement. In the process of refinement an unreliable channel is employed to simulate an attack behavior. The model provides a novel formal definition of exchanged items, and presents the formal goals for fairness, accountability, etc., reflecting the inherent requirements for fair exchange protocols across-the-board. In order to check, prove, and design fair exchange protocols effectively and efficiently, the model puts forward a novel property of abuse-freeness which applies to all fair exchange protocols, gives a formal definition for trust strand of the third party, and presents general criteria of designing a secure and effective fair exchange protocol. Taking a typical fair exchange protocol as an example, this paper presents the analysis steps of fair exchange protocols appealing to our model. An unknown attack is uncovered. The analysis reveals the process of a complete attack, discovering deeper reasons for causing an attack. Finally, we modify the flawed protocol and the revised protocol ensures the desirable properties.

关键词： events local causal relation local temporal relation global relation exchanged item security goals.

Formal analysis and design of multi-party fair exchange protocols

在线全文

学校读者我要写书评

暂无评论

Science in china(Series F) 2006年第2期49卷 155-174页

作者： QING Sihan1,2,3.& LI Gaicheng1,3.1. Engineering research center for information {3. Technology, Institute of Software, Chinese Academy of Sciences, Beijing 100080, china 2. Beijing Zhongke Ansheng Corporation of information Technology, Beijing 100080, china 3. Graduate School of the Chinese Academy of Sciences, Beijing 10003., china Engineering research center for information {3. Technology Institute of Software Chinese Academy of Sciences Beijing China Beijing Zhongke Ansheng Corporation of information Technology Beijing China Graduate School of the Chinese Academy of Sciences Beijing China

Based on the origin of message items and channel combination between transacting parties, and events and relations among events, this paper presents a concise, precise, and hierarchical model for general fair exchange protocols, formally specifies various security requirements which are able to reflect inherent requirements for fair exchange protocols more rigorously, and partition these security requirements with fine granularity. This work helps analyze, debug, and design multi-party fair exchange protocols more effectively and elaborately,

关键词： fair exchange logical protocol formal model security requirement.

A property-based attestation protocol for TCM

在线全文

学校读者我要写书评

暂无评论

Science china(information Sciences) 2010年第3期53卷 454-464页

作者： FENG DengGuo1,2 & QIN Yu1,2 1State Key Laboratory of information security, Institute of Software, Chinese Academy of Science, Beijing 100190, {3. 2National Engineering research center of information security, Beijing 100190, {3. State Key Laboratory of information security Institute of Software Chinese Academy of Science Beijing China National Engineering research center of {3. security Beijing China

This paper presents a property attestation protocol for the security chip TCM (trusted cryptographic module) via analyzing the problems of the current property attestation, which is built on the property attestation model with the online trust third party. In the protocol the prover utilizes the zero-knowledge proof by the attribute certificates, configuration commitment and TCM signature, and attests its configuration and status which are compliant with the declarative security property. The protocol is characterized by shorter signature length and lower computations. The security of the protocol is proved at the random oracle model. The protocol can help extend application and improve standard for security chip TCM, and it also has practical value and immediate significance.

关键词： trust computing trust cryptographic module (TCM) property attestation signature of knowl- edge configuration commitment

Mechanism and Defense on Malicious Code

在线全文

同方期刊数据库

学校读者我要写书评

暂无评论

Wuhan University Journal of Natural Sciences 2005年第1期10卷 83-88页

作者： WEN Wei-ping 1,2,3. QING Si-han 1,2,3.1. Institute of Software, the Chinese Academy of Sciences, Beijing 100080, china 2.Engineering research center for {3. security Technology, the Chinese Academy of Sciences, Beijing 100080, china 3.Graduate School of the Chinese Academy of Sciences, Beijing 100080, china Institute of Software the Chinese Academy of Sciences Beijing China Engineering research center for information {3. Technology the Chinese Academy of Sciences Beijing China Graduate School of the Chinese Academy of Sciences Beijing China

With the explosive growth of network applications, the threat of the malicious code against network security becomes increasingly serious. In this paper we explore the mechanism of the malicious code by giving an attack model of the malicious code, and discuss the critical techniques of implementation and prevention against the malicious code. The remaining problems and emerging trends in this area are also addressed in the paper.

关键词： malicious code attacking model mechanism defense system security network security

Identifying heavy hitters in high-speed network monitoring

在线全文

学校读者我要写书评

暂无评论

Science china(information Sciences) 2010年第3期53卷 659-676页

作者： ZHANG Yu1, FANG BinXing1,2 & ZHANG YongZheng2 1research center of Computer Network and information {3. Technology, Harbin Institute of Technology, Harbin 150001, china 2research center of information {3., Institute of Computing Technology, Chinese Academy of Sciences, Beijing 100190, china research center of Computer Network and information {3. Technology Harbin Institute of Technology Harbin China research center of information {3. Institute of Computing Technology Chinese Academy of Sciences Beijing China

Identifying heavy hitters in a network traffic stream is important for a variety of network applications ranging from traffic engineering to anomaly detection such as detection of denial-of-service attacks. Existing methods generally examine newly arriving items in the stream, perform a small number of operations using a small amount of memory, and still provide guarantees on the identifying accuracy. In high-speed network monitoring, the update speed per item is extremely critical. However, so far as we know, there are no identifying algorithms which can provide constant update time (O(1)) in a weighted data stream. In this paper, we present an algorithm named Weighted Lossy Counting (WLC) which is able to identify heavy hitters in a high-speed weighted data stream with constant update time. WLC employs a novel efficient partially ordered data structure which is able to provide a fast per-item update speed while keeping the memory cost relatively low. We compare WLC with state-of-the-art algorithms for finding heavy hitters in real traffic traces. The experimental results show that WLC performs well in accuracy (recall, precision and average relative error) as other algorithms; moreover it has a much higher update speed at the cost of relatively larger memory space used. A theoretical worst-case memory bound of WLC is also derived in this paper; however, experiments with long real traffic traces show that WLC requires much less space than the theoretical bound in practice.

关键词： network traffic monitoring heavy hitter weighted data streams

Study on NDVI-T_s space by combining LAI and evapotranspiration

在线全文

同方期刊数据库

学校读者我要写书评

暂无评论

Science china Earth Sciences 2006年第7期49卷 747-754页

作者： HAN Lijuan1,2,3. WANG Pengxin4, YANG Hua1,2,3. LIU Shaomin1,2,3.& WANG Jindi1,2,3.1. research center for Remote Sensing and GIS, School of Geography, Beijing Normal University, Beijing 100875, china 2. State Key Laboratory of Remote Sensing Science, Beijing 100875, china 3. Beijing Key Laboratory for Remote Sensing of Environment and Digital Cities, Beijing 100875, china 4. Department of information Management, College of information and Electronic Engineering, china Agricultural University, Beijing 100083. china research center for Remote Sensing and GIS School of Geography Beijing Normal University Beijing China State Key Laboratory of Remote Sensing Science Beijing China Beijing Key Laboratory for Remote Sensing of Environment and Digital Cities Beijing China Department of information Management College of Information and Electronic Engineering China Agricultural University Beijing China

This paper focuses on interpreting the different spatial relationships between NDVI and Ts, a triangular or a trapezoid, and on analyzing transformation conditions, the physical and ecological meanings of the vegetation index-surface temperature space as well. Further, we use the Tempera-ture-Vegetation Dryness Index (TVDI) to explain the existent meaning of a triangular space after NDVI reaches its saturated state by employing the relationships between NDVI, LAI and evapotranspiration. The specific relations between NDVI and Ts are useful for describing, validating and updating land surface models.

关键词： NDVI, land surface temperature, evapotranspiration, leave area index.

Dam risk assistant analysis system design

在线全文

学校读者我要写书评

暂无评论

Science china(Technological Sciences) 2008年第S2期51卷 101-109页

作者： HE XianFeng1,2,3.GU ChongShi3.4,WU ZhongRu3.4 & SU HuaiZhi3.4 1 Yellow River Institute of Hydraulic research,Zhengzhou 450003.china 2 Embankment security Defect Prevention and Control Engineering research center of MWR,Zhengzhou 45000,china 3.College of Water Resources and Hydropower Engineering,Hohai University,Nanjing 210098,china 4 National Engineering research center of Water Resources Efficient Utilization and Engineering Safety,Hohai University,Nanjing 210098,china Yellow River Institute of Hydraulic research Zhengzhou China Embankment security Defect Prevention and Control Engineering research center of MWR Zhengzhou China College of Water Resources and Hydropower Engineering Hohai University Nanjing China National Engineering research center of Water Resources Efficient Utilization and Engineering Safety Hohai University Nanjing China

In order to reduce the labor intensity and task difficulty of dam risk analysis and to meet the actual requirement of dam risk analysis,it is necessary to establish a dam risk assistant analysis *** program structure and the implementation ways of the dam risk assistant analysis system are analyzed,and a procedural framework with "three-tier and multi-database" structure and "level structure" is *** concept of dam risk assessment system modular development is proposed and the coupled mode of function module and data is ***,the dam risk assistant analysis system is developed using Delphi visual programming language.

关键词： dam risk risk analysis assistant analysis system

Theoretical research progress in new-generation Internet architecture

在线全文

学校读者我要写书评

暂无评论

Science in china(Series F) 2008年第11期51卷 1634-1660页

作者： WU JianPing1,2,3.LIU Ying2,3.& WU Qian2,3.1 Department of Computer Science,Tsinghua University,Beijing 100084,china 2 Network research center,Tsinghua University,Beijing 100084,china 3.Tsinghua National Laboratory for information Science and Technology(TNList) ,Beijing 100084,china Department of Computer Science Tsinghua University Beijing China Network research center Tsinghua University Beijing China Tsinghua National Laboratory for information Science and Technology (TNList) Beijing China

Internet has become the most important information infrastructure supporting modern socio-economic development, social progress and technological Innovation. Invented 3. years ago, today Internet is facing increasingly severe technical challenges. This paper introduces the progress of the major international newgeneration Internet research plans; analyzes its basic characteristics and the principal contradictions during the development; detsiledly introduces the research carried out by 973.Project ＂research of Future Internet Architecture＂ on the key scientific issues of new-generation Internet architecture and its latest research results; and looks to the future of the research-focus faced with the new situations of the basic research of new-generation Internet architecture as well as the new demands of innovative applications on Internet architecture.

关键词： new-generation Internet network architecture multi-dimension scalability

A formal method to real-time protocol interoperability testing

在线全文

学校读者我要写书评

暂无评论

Science in china(Series F) 2008年第11期51卷 1723-1744页

作者： WANG ZhiLiang1,3.YIN Xia2,3.& JING ChuanMing2,3.1 Network research center,Tsinghua University,Beijing 100084,china 2 Department of Computer Science and Technology,Tsinghua University,Beijing 100084,china 3.Tsinghua National Laboratory for information Science and Technology(TNList) ,Beijing 100084,china Network research center Tsinghua University Beijing China Tsinghua National Laboratory for information Science and Technology (TNList) Beijing China Department of Computer Science and Technology Tsinghua University Beijing China

Interoperability testing is an important technique to ensure the quality of implementations of network communication protocol. In the next generation Internet protocol, real-time applications should be supported effectively. However, time constraints were not considered in the related studies of protocol interoperability testing, so existing interoperability testing methods are difficult to be applied in real-time protocol interoperability testing. In this paper, a formal method to real-time protocol interoperability testing is proposed. Firstly, a formal model CMpTIOA （communicating multi-port timed input output automata） is defined to specify the system under test （SUT） in real-time protocol interoperability testing; based on this model, timed interoperability relation is then defined. In order to check this relation, a test generation method is presented to generate a parameterized test behavior tree from SUT model; a mechanism of executability pre-determination is also integrated in the test generation method to alleviate state space explosion problem to some extent. The proposed theory and method are then applied in interoperability testing of IPv6 neighbor discovery protocol to show the feasibility of this method.

关键词： protocol testing interoperability testing real-time testing test generation timed input output automata(TIOA)