Professional Documents
Culture Documents
CHỮ KÝ SỐ TRONG GIAO DỊCH MẠNG
CHỮ KÝ SỐ TRONG GIAO DỊCH MẠNG
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
PHN 1
TNG QUAN V CH K S TRONG
GIAO DCH MNG
1.1.
Gii thiu
Thng mi in t l hnh thc kinh doanh, hot ng bng phng php
in t, l vic trao i thng tin, d liu thng qua cc phng tin cng ngh
in t m khng cn in ra giy trong bt c cng on no trong qu trnh giao
dch.
Trong s pht trin nhanh chng ca Internet ko theo mt lot cc dch
v mi ra i nh tr chuyn, qung co, t vn, t hng, bn hng qua
Internet. Trong s , dch v thng mi in t (TMT)(Electronic-Commerce)
l mt bc nhy vt trong vic ng dng Internet vo cuc sng v kinh doanh.
Thng qua TMT, nhiu loi hnh kinh doanh mi c hnh thnh, trong c
vic mua bn hng trn mng. Vi hnh thc ny, ngi tiu dng c th tip cn
vi hng ha mt cch d dng v nhanh chng hn rt nhiu so vi cch thc
mua bn truyn thng, ng thi cn tit kim thi gian ngi dng c th u
t vo vic khc. Ngoi ra TMT cn gip con ngi c th tm kim t ng
theo nhiu mc ch khc nhau, t ng cung cp thng tin theo nhu cu, s thch
v con ngi c th ngi ti nh mua sm theo mun.
Nhng l do trn cho thy u im ca TMT em li l mt th mnh
pht trin nn kinh t t nc v ci thin i sng ngi dn.
1.2.
t vn
Trong khi TMT pht trin rt mnh trong khu vc cng nh trn th gii
Mc tiu lun vn
Trc ht lun vn gip cho chng ta hiu v tm quan trng ca thng mi
in t v nhng ri ro trong khi giao dch v xut bin php khc phc.
Lun vn gii thiu nhng thut ton bo mt v xc nhn thut ton c
xem l hiu qu nht trong qu trnh bo mt hin nay.
Ngoi ra lun vn cng gii thiu vn gip chng ta tin tng hn v giao
dch trn mng v c khng nh qua ch k s.
Lun vn cng khng nh c vn khuyt im m cn c gii quyt
trong thi gian ti l khuyt im ca ch k s.
1.4.
B cc lun vn
PHN 2
GII THIU THNG MI IN T
2.1.
pht huy ht tim nng ca n. Ngi dn nu c iu kin mua hng trn Internet
th cng ch c th thc hin thao tc chn hng v t mua, cn giao hng v
thanh ton vn phi thc hin theo cch truyn thng. Mt khc, s thu bao
Internet hin nay ti VN cn thp v cc ph s dng cn kh cao so vi thu
nhp nn mc ph bin ca Internet cn rt hn ch. Do , TMT thc t cn rt
xa l vi a s ngi dn VN. Chnh v vy, cc cng ty, cc t chc v cc doanh
nghip phi l nhng ngi tin phong trong lnh vc ny bi li ch ca TMT
vi nhng i tng s dng ny l rt ln v khng b hn ch nh nhng ngi
tiu dng n l.
i vi nhng doanh nghip v t chc c quan h lu di, uy tn v tin
tng ln nhau, h c th s dng mt trong cc hnh thc ca TMT l trao
i d liu in t (EDI). Cc d liu mang tnh thng mi s c trao i trc
tip gia cc doanh nghip di cc nh dng thng nht. Bng cch ny, cc
doanh nghip s c kh nng chia s ti nguyn thng tin ca mnh. Hp tc trong
cc d n nghin cu hay thm ch c th k hp ng trc tip qua Internet m
khng cn phi gp mt, tit kim c nhiu thi gian v chi ph.
Tuy nhin vn quan tm nht i vi nhng ngi tham gia vo TMT
chnh l an ton ca cc cuc giao dch. Vic phi tit l cc thng tin chi tit v
c nhn hay t chc i khi gy nn nhng hu qu kh lng, c bit khi nhng
thng tin quan trng ny ri vo tay cc tin tc (hacker) c mc ch xu, nh th
c th xy ra hin tng canh tranh khng lnh mnh, nng th c th xy ra hin
tng tht thot ti khon giao dch. Do , hng lot cc cng ngh m bo an
ninh web c pht minh v s dng nh SSL (Secure Sockets Layers), SET
(Secure Electronic Transaction)
Mt iu khng th ph nhn l s ra i ca Internet l mt cuc cch
mng ln trong ngnh thng tin, m ra mt phng thc hon ton mi nht rt
hiu qu trong cng tc tip cn, thu thp, phn tch v trao i thng tin. Khng
Giao dch in t
Cc h thng in t
H thng mi gii in t: E-Broker
Cc h thng mi gii in t nh BargianFinder, Jango thng cung cp
cng c tm kim thng tin gip khch hng c th d dng tm kim cc hng ha
v dch v m h cn. Khch hng s a yu cu tm kim v h thng mi gii
s t ng tm kim nhng nh cung cp c kh nng p ng yu cu ny. Kt
qu l danh sch cc hng ha v dch v cng vi a ch lin lc hoc a ch
Web ca nh cung cp tng ng, danh sch c th sp xp theo tiu chun gi c.
Tuy nhin, h thng ch h tr giai on tm kim thng tin, cn nhng cng vic
khc nh t hng, thanh ton, phn phi phi do khch hng t thc hin trc
tip vi nh cung cp h chn.
H thng u gi in t: E-Auction.
Cng vi s pht trin ca Internet, nhiu website bn u gi ra i,
trong c mt s website ni ting nh E-Bay, Onsale, FirstAuctionCc site
bn u gi lm trung gian m phn v gi c hng ha gia ngi mua v ngi
bn vi chi ph thp hn nhiu so vi cc cuc u gi truyn thng. Bt c ngi
dng Internet no cng c th tham gia mua hoc bn hng ha trong cc cuc bn
u gi trc tuyn. Nhiu khch hng thc hin vic u gi mua v bn linh
Bn cht ca TMT l hnh thc kinh doanh qua mng Internet. Internet
ngoi vic em li nhiu li ch cn l mi trng pht trin TMT, v n cng l
mi trng rt thun li cho k ph hoi thc hin cc xu ca mnh nh xem
trm thng ip trn ng truyn, tn cng ph hoi ni dung thng tin, gi mo
thng ip hay gi mo ngi dng.
C rt nhiu loi tn cng an ninh lin quan n vic xc thc hoc h thng
nh cch tn cng vo cc thnh phn mng, cc thnh phn, phn mm thirdparty, cch tn cng vo h iu hnhCch tn cng xc thc trong TMT
thng gp l:
+ Tn cng bng xem trm:
y l kiu tn cng tuy khng nh hng trc tip n ni dung thng tin
nhng nh hng n tnh ring t (privacy) ca thng tin. K ph hoi bt cc
gi tin TCP/IP bi chng c th cha cc thng tin nh username v password ca
ngi dng. Kiu tn cng ny thng c phn loi nh kiu tn cng man-inthe middle, bi bt cc gi thng tin k ph hoi phi nm gia h thng ang
truyn thng. Kiu tn cng ny xy ra do vic gi d liu qua cc knh truyn
dng vn bn thng thng.
+ Tn cng bng gio mo ID.
Xut hin khi mt k gi mo hay mo nhn l mt ngi khc hoc mt x
l khc ph hoi hoc x l ph hoi. Kiu tn cng ny cho php k ph hoi
trn Internet gi mo a ch IP ca h thng.
+ Tn cng bng vt cn (Brute-force attacks).
Tn cng bng vt cn l tn gi ca mt hnh thc tn cng ph bin nhm
ly thng tin v password v username ca ngi dng. K tn cng dnh quyn
truy xut vo thit b lu tr cc thng tin nh username v password, sao chp
file h thng hoc h thng c s d liu lu cc thng tin ny. Nu thng tin
c m ha dng cho thng tin tht, sau n s so snh kt qu nhn c vi
10
11
12
13
14
15
qua mng nhng khng tnh bo mt s dng h thng thanh ton trn mng
Internet. V th nhiu ng dng c gng lp y khong trng . n cui
nm 1999, c hn 80 c cu thanh ton ang cnh tranh mua bn trc tuyn.
Hu ht cc h thng thanh ton hin nay l mt trong 3 trng hp sau:
+
Smart card
16
FVIPS, ngi s dng phi gi thng tin ca th Credit Card ca mnh n First
Virtual theo cch truyn thng c th l in thoi, fax hay E-mail. Sau , ngi
s dng c y quyn mt VirtualPin. VirtualPin nay l mt chui va s va k
t. Ngi s dng dng VirtualPin ny nh l mt b danh cho m s th tn dng
khi mua bn trn mng.
H thng ny lm vic nh sau: khi c mt phin mua bn th ngi mua s
gi VirtualPin ca h ti ngi bn ang tham gia trc tuyn, ngi bn s a
VirtualPin ca ngi mua v mt ci m t tm tt ca s mua bn ti FVHI,
FVHI s dng VirtualPin ny tm a ch E-mail ca ngi mua trong mng ni
b. First Virtual s gi mt E-mail ti ngi mua chng thc s lng hng mua.
Sau , ngi mua s gi mail li FVHI chng thc vic mua hng c hay khng,
nu vic mua hng c chng thc bi ngi mua th FVHI s tr ti khon
trong Credit Card ca ngi mua (vic x l ny khng kt ni vo mng) v gi
s xc nhn ny ti ngi bn. Sau ngi bn ng giao dch v cung cp dch
v hoc chuyn hng ti ngi mua.
Ngi mua cng c th hy b giao dch mua hng bng mt s la chn hi
p, v d nh ngi mua la chn hi p l t Fraud th vic bn hng s t
ng hy b v s kin ny c quay v FVHI iu tra. Trong trng hp
ny, s gian ln xy ra l rt kh khc vi cc h thng cch tranh khc, FVIPS
khng tin vo vic m ha d liu cng khng bt ngi mua phi s dng phn
mm hay phn cng c bit no hot ng
Cc h thng thanh ton thng mi khc trn mng.
+
trng thng mi trn mng theo tng tnh cht. Mt s dng trong giao dch rt
nh nhng h thng ny trc tin c thit k tr cho chi ph nh nh s
cung cp thng tin v mi ln truy cp vo cc site hoc nhng trang web c bit.
Mt s h thng thanh ton khc kt hp cht ch vi h thng trung gian nh th
17
Credit Card hoc thanh ton nhng vi iu kin bo mt tht kin c vng chc
nhng thng tin nhy cm i qua mt cch an ton v c th tin cy. Mt s
khc thuc nhng h thng s hu m ph thuc vo ngi s dng m nhng
ti khon vi nhng ngn hng trc tuyn c bit.
+Micropayment Systems: Millicent, NetBank v Digicash l ba cng ty tng
thit k cc h thng tr gip cho Micropayment. Sc mnh ca h thng thanh
ton ny l a ra nhng d liu ti chnh rt hin i, kp thi, nh ti hng ngy
nhng chuyn ci, hnh nh, bo, tp ch hoc nhng thng tin khc trc tuyn
l nhng ci min ph hin nay.
ng dng Debit Card vo h thng thanh ton qua mng. Hin nay ng dng
ca loi th ny cng c s dng rng ri trn th gii qua hai loi th l
Master Card v Visa Card.
Thun li ca cc loi th ny l phng thc thanh ton trc tip, nh
khch hng khng phi lo cc khon ri ro nh khi dng tin mt, nh mt, tin
gi, mang vc, tnh ton phi chi tr bao nhiu
Chng c th s dng c ti bt k my c th in t ti cc im bn
hng hoc my ATM ca bt c ngn hng no trong h thng, trn ton th gii.
Nh s thun li cn vt tri th ATM, khi th ATM ca ngn hng no ch
s dng c ti my ca ngn hng . Hin nay trn th gii hai loi th ny
c chp nhn thanh ton ti 24 triu im v hn 1 triu my ATM.
im c bit ca loi th ny c th s dng thanh ton trc tuyn trn
mng thng qua h thng trung gian uy tn v c s tin cy tuyt i. Cch thc
thanh ton ca h thng ny c thc hin nh hnh v sau:
18
19
thng trung gian nh th Credit Card hoc thanh ton nhng vi iu kin bo mt tht
kin c vng chc nhng thng tin nhy cm i qua mt cch an ton, v c th tin
cy. cn mt s khc th thuc nhng h thng s hu m ph thuc vo nhng ngi
s dng m nhng ti khon vi nhng ngn hng trc tuyn c bit.
+
Vit Nam hin nay cng c mt s h thng thanh ton qua mng. V d
20
PHN 3
CC THUT TON M HA
3.1.
Gii thiu
Trong TMT, s tin cy ca ngi dng tt nhin phi c m bo bng
cc phng tin khoa hc, k thut c chng minh. Nhng trn Internet
thng tin c truyn ti qua nhiu ng, nhiu ng, kh nng thng tin tht
thot trn ng truyn l khng th trnh khi. Bo mt hiu mt cch n gin
l phi c mt cch thc bo v cc ti liu, vn bn quan trng c lu tr trn
my tnh cng nh khi cc ti liu ny c gi qua mng Internet. V thc cht,
m ha l qu trnh bin i thng tin ban u (plainText) sang mt dng khc gi
l bn m (cipherText).
Mt h thng m ha bao gm cc thnh phn sau:
- PlainText : Bn tin s c m ha hay bn tin gc.
- CipherText : Bn tin c m ha hay bn tin m.
- Thut ton m ha v gii m :
+encryption : qu trnh chuyn bn tin gc sang dng mt m.
+
21
Phn loi
22
23
24
3.3.
c ch m ha kha i xng i hi s
25
b dy lu i nh h thng m ha
C ch m ha kha b mt
26
Gii thiu
DES c vn phng tiu chun ca M (U.S. National Bureau of
27
DES lm vic trn tng khi d liu vi kch thc khng i. Do , ton
b vn bn m trc ht phi chia thnh tng khi d liu vi kch thc ph hp,
c th i vi gii thut DES mi khi l 64 bit. K n phi to mt kha di 64
bit, trong 56 bit c dng trc tip bi b m v 8 bit cn li dng kim
sot li. Khi 56 bit kha c dng m ha tng khi 64 bit vn bn gc
thnh 64 bit vn bn mt m s c truyn ln mng. Bn cnh , dng mt
kha vi bn m gii m thng tin nhn c v ln lt tin hnh kt ni cc
khi ny li thu c vn bn ban u.
Qu trnh m ha tng qut ca DES c minh ha nh sau:
28
nh gi
Nm 129979, Hellman vit mt bi bo vi tiu "DES s hon ton
khng an ton trong vng mi nm na". Cuc tranh lun bt u t kha DES
c chiu di kh ngn c th c tm ra sau mt s bc vt cn.
Tuy nhin nu s bit dng cho kha cng ln th kha cng tr nn xc nh
v cng kh ai c th thc hin c gii m mt cch bt hp php.
Nu dng 56 bits kha trong gii thut DES s c 2 56 = 7.2*1917 kh nng
chn cc kha khc nhau. Ngha l nu dng cch vt cn kha th cng mt
khong 256 bc vt cn tm ra c kha, vic ny cng ging nh tm mt ht
ct trn sa mc. Nm 1977, Deffie v Hellman ngh mt my bao gm mt
triu b vi x l c th th mt triu kha mi giy, vi tr gi khong 20.000.000
USD/my c th vt cn tm ra kha trong vng 20 gi. Nm 1984, Hoormaert,
Goubert, v Desmedt ngh mt my tnh gm 25.000 thit b c kh nng th
1.13 triu kha mi giy vi tr gi khong 1.000.000 USD/my c th vt cn
khng gian kha trong vng 4 tun.
C.
M rng
tng cng an ton ngi ta ngh ti vic m ha mt khi vn bn
29
3.4.3. C ch m ha RC5
A.
Gii thiu
Thut ton m ha RC5 do gio s Ronald Rivest ca i hc MIT cng b
Thut ton
B.1.
nh ngha cc gi tr
RC5 c xc nh nh mt RC5-w/b/r trong :
+w : kch thc khi cn c m ha (gi tr chun l 32 bit, ngoi ra ta c
th chn 16 hay 64 bit).
30
M rng kha
tng an ton cng nh vic bo v kha b mt cho ngi dng. Vic
31
Bc 2 :
Khi to mng S vi mt mu bit ngu nhin c bit, bng cch
Bc 3 :
Trn kha b mt ca ngi s dng vo mng L v S.
A=B=0
i=j=0
v = 3 * max{c,t}
For s=1 to v do {
A = S[i] = (S[i] + A + B) <<<3
32
Qu trnh m ha
Thut ton s mi ln m ha trn hai khi w bit, gi s l A v B. V sau
33
34
35
}
B = B' - S[1]
A = A' - S[0]
B.4.
nh gi
Thm m RC5 :
+Theo kt qu nh gi an ton ca cc thut ton th RC5 vi 12 vng
6
216
8
228
10
236
12
244
14
252
16
261
18
>
36
Gii thiu
RC6 l mt ci tin ca RC5, c thit k gii quyt cc yu cu v mt
Thut ton
B.1.
nh ngha cc gi tr
RC6 c xc nh nh RC6-w/b/r trong :
37
M rng kha
Tng t nh RC5, RC6 cng s dng c ch m rng kha m bo an
ton v tng thm s phc tp. Tuy nhin trong thut ton RC6 th kha K ca
ngi s dng c m rng thnh mt tp hp gm 2(r + 2) v lu vo bng S.
Do vy, S l mt mng ca t = 2(r + 2) cc s ngu nhin nh phn c quyt
nh bi kha K. N s dng hai hng s l tng c nh ngha :
Pw = Odd ((e -2)2w)
Qw = Odd ((0/ - 1)2w)
Trong :
e = 2.178281828459... (da trn s logarithms t nhin)
0/ = 1.618033988749... (t l vng
Odd (x) l s nguyn l gn x nht
38
Mt s gi tr khc :
t = 2(r + 2) : s phn t ca bng kha m rng S.
u = w/8 : u l s lng cc byte ca khi w
c = b/u
Qu trnh m rng kha bao gm cc bc sau:
Bc 1 :
- Chp kha b mt K[0,...,b-1] vo mng L[0,...,c-1].
- Thao tc ny s dng u byte lin tc nhau ca kha K in vo cho L, theo
th t t byte thp n byte cao. Cc byte cn li trong L c in vo gi tr
0.
- Trong trng hp b = c = 0, chng ta s t c v 1 v L[0] v 0.
Bc 2 :
- Khi to mng S vi mt ton t ngu nhin c bit, bng cch dng mt
php tnh s hc module 2w c quyt nh bi hng s l tng P W v Qw.
S[0] = Pw
For i = 1 to t - 1 do
S[i] = S[i-1] + Qw
Bc 3 :
-
39
j = (j + 1) mod (c)
}
-
tm ra kha K t S.
Thut ton m rng :
Input : kha b c np v mng c phn t L[0,...,c-1]
S vng quay r
Output : mng kha S[0,...,2r + 3]
S[0] = Pw
For i = 1 to 2r + 3 do
S[i] = S[i - 1] + Qw
A=B=0
i=j=0
v = 3 * max {c, t}
For s = 1 to v do {
A = S[i] = (S[i] + A + B) <<< 3
B = L[j] = (L[j] + A + B) <<< (A + B)
i = (i + 1) mod (t)
j = (j + 1) mod (c)
}
40
41
Mt s Phin bn
B.3.1 RC6-I-NFR
Phin bn ny th hm f(x) = x(2x + 1) c thay th bng hm f(x) = x v
khng s dng vic quay cc gi tr (Fixed Rotation FR) lgw bit.
Input : gi tr gc c lu tr trong bn khi w-bit A, B, C, D.
S vng lp r.
w-bit kha vng lp S[0,...2*r + 3]
Output : gi tr m c lu trong 2 khi w-bit A', B', C', D'.
Thut ton :
B = B + S[0]
D = D + S[1]
For i = 1 to r do {
t=B
u=D
A = ((A XOR t) <<< u) + S[2i]
42
B.3.2. RC6-NFR
Phin bn RC6-NFR khng s dng vng quay.
B = B + S[0]
D = D + S[1]
For i = 1 to r do {
t = (B x (2B + 1))
u = (D x (2D + 1))
A = ((A 0/ t) <<< u) + S[2i])
C = ((C 0/ u) <<< t) + S[2i + 1])
(A, B, C, D) = (B,C, D, A)
}
A = A + S[2r + 2]
C = C + S[2r + 3]
(A', B', C', D') = (A, B, C, D)
B.3.3. RC6-I
Phin bn RC6-I th hm f(x) = x(2x + 1) c thay th bng hm s f(x) = x
B = B + S[0]
D = D + S[1]
For i = 1 to r do {
43
t = B <<< lgw
u = D <<< lgw
A = ((A 0/ t) <<< u) + S[2i])
C = ((C 0/ u) <<< t) + S[2i + 1])
(A, B, C, D) = (B,C, D, A)
}
A = A + S[2r + 2]
C = C + S[2r + 3]
(A', B', C', D') = (A, B, C, D)
B.4.
nh gi
Thm m RC6 :
+Bng di y tng kt chi ph cho vic thm m RC6 theo cch tip cn vi
phn v tuyn tnh. y tnh trn RC6 s dng 20 vng lp.
+Nu dng cch vt cn kha K vi b-byte vi mt bng kha m rng
S[0,...43] th cn min{28b, 21048} thao tc. Do vy, vi kch thc kha c
xc nh trong AES th vic gii m bng cch vt cn th dng nh khng
th thc thi.
K thut thm m
Vi phn
Tuyn tnh
S vng lp
8
12
56
2
2117
247
283
16
2190
2119
20
2238
2155
24
2299
2191
8
222
223
44
S vng lp
12
16
20
32
45
2
2
266
234
247
269
24
276
280
228
256
RC6-NFR
RC6
247
2117
261
2190
284
2238
2103
2299
u im :
Do RC6 c pht trin t RC5 nn s c tt c nhng u im ca RC5.
Bn cnh , RC6 cn c mt s c tnh sau :
+RC6 tng thm s phc tp ca qu trnh m ha v gii m bng cch s
dng cc php ton : cng, tr, nhn, exclusive-or, quay tri v quay phi.
+Mt s c im ni bt khc ca RC6 so vi RC5 l thao tc quay s dng
cht ch cc d liu ph thuc v c thao tc trn tt c cc bit.
+Tng thm an ton ca thut ton bng cch tng s phn t trong bng
kha m rng l 2(r + 2) thay v 2(r + 1) i vi RC5 (vi r l s vng lp).
+Mi qu trnh m ha v gii m ca RC6 c thc hin trn 4 khi w bit.
Do vy, RC6 c th tng tc m ha ng thi cng tng thm s phc tp.
+Vi nhng u im trn, RC6 c chn vo danh sch mt trong nm ng
c vin lt vo vng chung kt ca chun m ha d liu cao cp AES (Advanced
Encryption Standard).
3.4.5. C ch m ha AES
Thut ton m ha khi Rijndael c thit k s dng cho cc thao tc
n gin trn ton byte. Bn cnh , thut ton cng cung cp tnh uyn chuyn
c yu cu cho cc ng c vin AES - l c kch thc kha ln kch thc
khi cn m ha c th c chn bt k cc gi tr 128, 192 hoc 256 bit.
m ha khi d liu bng Rijndael, trc tin thi hnh thao tc Add
Round Key (thao tc XOR mt kha con vi khi d liu). Tip theo, thc hin
mt s vng lp chnh. S vng lp chnh trong Rijndael nh sau :
+9 nu c khi cn m ha v kha c cng chiu di l 128 bits.
45
+11 nu hoc khi d liu hay kha l 192 bits, v khng ci no c kch
thc ln hn 192 bits.
+13 nu hoc khi d liu hay kha c chiu di 256 bits.
Vng lp chnh bao gm cc bc :
-ByteSub (Substitution Byte) : mi byte ca khi c thay th bng mt
gi tr khi qua mt S-box.
-ShiftRow (Shift Rows) : y l qu trnh chuyn i cc dng.
-MixColumn (Multiply columns) : thi hnh qu trnh nhn ma trn, khi ny
mi ct c nhn vi ma trn M4x4.
- AddRoundKey (Xored by key): qu trnh ny ch n gin XOR kha con
cho kt qu ca vng hin hnh.
Vng cui cng ch thi hnh vic chuyn i :
ByteSub
ShiftRow
AddRoundKey
Ton b qu trnh m ha ca AES c th c minh ha nh sau :
46
3.5.1. C ch m ha RSA
A.
M t
Thut ton m ho RSA do ba nh ton hc Ron Rivest, Adi Shamir v Len
47
48
nh ngha cc gi tr
49
2.
3.
cho B
cho A
50
PHN 4
HM BM V CH K S
4.1.
Khi qut
Chng thc l th tc kim tra thng tin nhn c xut pht t ng ngun
Hm bm
Khi nim
MD5 (Message Digest) c pht trin bi gio s Rinaldl Rivest, ng
51
M t thut ton
Gi s rng, c mt thng ip l (b bit) v chng ta ao c l tm c mt
52
April 1992
word A: 01 23 45 67
word B: 89 ab cd ef
word C: fe dc ba 98
word D: 76 54 32 10
Bc 4 :
X l thng ip theo khi 16 t
u tin, chng ta cn nh ngha 4 hm h tr m gi tr vo l 3 t 32 bit
v sinh ra kt qu l t 32 bit F(X, Y, Z)
F(X,Y,Z) = XY v not(X) Z
G(X,Y,Z) = XZ v Y not(Z)
H(X,Y,Z) = X xor Y xor Z
I(X,Y,Z) = Y xor (X v not(Z))
Trong mi bit v tr F c thc thi nh iu kin u tin nu X k l Y
v sau l Z. Mt hm F c th c nh ngha vic dng + thay th cho v khi XY
53
54
4.2.2. SHA
A.
Khi nim
SHA l phn c s dng cho DSA nh mt phn quan trng trong DSS v
M t thut ton
55
56
57
Cha ng t biu din theo 1 s ca bit trong thng ip gc. Nu 1 < 2 32 khi u
tin t l tt c u l 0, m vo 2 t cho thng ip m
V d :
Suppose the original message is as in (b). Then l = 40
(note that l is computed before any padding). The two-word
representation of 40 is hex 00000000 00000028. Hence the final
padded message is hex
61626364 65800000 00000000 00000000
00000000 00000000 00000000 00000000
00000000 00000000 00000000 00000000
00000000 00000000 00000000 00000028.
The padded message will contain 16 * n words for some n > 0.
The padded message is regarded as a sequence of n blocks M(1),
M(2), first characters (or bits) of the message.
4. Hm v hng s s dng :
Trnh t c php ca hm bm l f (0) f (79) l c s dng trong SHA-1. Mi
hm f (t) , vi 0 <= t <=79. Hot ng trn cc t 32 bit B, C, D c nh ngha nh
sau :
Cho t B , C , D
58
5. Tnh gi tr hm bm :
Phng thc cho bn di y s sinh ra gi tr bm. Mc d thut ton th 2
lu tr 64 t 32 bit, c th ko di thi gian hot ng do vic tng tnh phc tp ti
ni xc nh trong vic tnh ton cho -------- trong bc (c). Ngoi ra, cn nhng
phng php tnh ton khc cng cho ra kt qu ging nhau.
5.1 Phng php 1 : Thm bit vo thng ip.
Vic bm l qu trnh tnh ton c s dng thng ip m m t phn
trn.
Vic tnh ton dng 2 vng m, mi vng m cha 5 t 32 bit v mt chui
80 t 32 bit. Cc t ca vng m 5 t u k hiu l A , B , C , D , E. Cc t ca vng
m trong 5 t th 2 k hiu H0, H1, H2, H3, H4. Cc t ca chui 80 t u k hiu
l W (0), W (1), W (2), W (79). Mt vng m TEMP cha duy nht t c dng.
to ra thng ip rt gn, cc khi 16 t (M1 , M2) .. M(n) c x l theo
th t. Vic x l mi M (i) bao gm 80 bc. Trc khi x l bt k khi no. H i
c khi ng theo h thp lc phn nh sau:
59
September 2001
60
left-most word.
b. Let
A = H0,
B = H1,
C = H2,
D = H3,
E = H4.
c. For t = 0 to 79 do
s = t AND MASK;
if (t >= 16) W[s] = S^1(W[(s + 13) AND MASK] XOR W[(s + 8) AND
MASK] XOR W[(s + 2) AND MASK] XOR W[s]);
TEMP = S^5(A) + f(t;B,C,D) + E + W[s] + K(t);
E = D; D = C; C = S^30(B); B = A; A = TEMP;
d. Let
H0 = H0 + A,
H1 = H1 + B,
H2 = H2 + C,
H3 = H3 + D,
H4 = H4 +
E.
61
This appendix is for informational purposes only and is not required to meet the
standard.
Let the message be the ASCII binary-coded form of "abc", i.e.,
01100001 01100010 01100011.
This message has length l = 24. In step (a) of Section 4, we append "1". In step (b) we
append 423 "0"s. In step (c) we append hex 00000000 00000018, the 2-word
representation of 24. Thus the final padded message consists of one block, so that n = 1
in the notation of Section 4.
C.
Khuyt im
Trong nm 2005 gio s XiaoyonWang cng b hm bm SHA-1 b tn cng,
62
4.3.
Ch k s
63
4.3.3. c im ch k s
+
ngi to ra n.
+
b mt to ch k.
+
liu khc
+
4.3.4. Khuyt im ca ch k s
Khi cng nhn mt ch k s, mt li khuyn cho bn vi vi s tn ti ca
publickey. Nhng bn s hiu nh th no nu publickey l khng ng?
Nu bn khng cho lp tc mt publickey vo trong bo mt th bn khng
chc chn puplickey l ng. Chng thc s s c gng(Digital certificates)
gii quyt nhng vn ny, vic ng nht mt publickey vo trong l cch
khng th gii c, chng ta s s dng certificates vo ng nht bin.
64
PHN 5
KT QU V THO LUN
5.1.1. M hnh ng dng
65
66
67
68
69
5.1.2. S lp:
Item
String name
String code
double price
Provider
String name
String pass
String model
Bank bank
List items
1..*
1..*
*
Customer
String name
String pass
String idCard
Bank bank
1
Order
String codeOfOrder
String nameOfCus
String nameOfPro
String dateOfOrder
String dateOfDelivery
String addressForward
List items
Bank
String nameOfBank
String accountCode
String pincode
70
71
72
73
74
Hnh 5.2.5: Ha n
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
PHN 6
CBHD: Th.s Nguyn Thnh Sn
90
KT LUN
6.1. Vn t c v cha t c trong lun vn
6.1.1. Vn t c
Thc hin c giao dch mua bn c bn qua mng.
Bo mt c tt c thng tin giao dch.
Trnh ph nhn, bc b thng qua m hnh ch k in t.
6.1.2. Vn cha t c
Cha gii quyt c server cho tng nh cung cp.
H thng s tt nghn khi c nhiu giao dich xy ra ng thi.
Giao din cha mang tnh phc v thng mi.
Cha cp nht d liu t file son tho trc.
6.2. Nhng kh khn trong qu trnh lm lun vn
ng nht m hnh ng dng cho lun vn nn c nhng vic tranh
lun gy gt trong nhm. Nhng kh khn v c s d liu khng c ng b,
cch hiu v m hnh ng dng kh a ra c s lp.
6.3. Hng pht trin
V vic ch k s xut hin nhiu khuyt im, trong khi hai hm bm
c dng nhiu nht to ch k s cng b tn cng. V l ng dng ch
k s vo trong TMT l vn ang cn quan tm ch nhiu hn. Hin nay
SHA-2 ra i v so vi SHA-1 th SHA-2 l phin bn mi ci thin cho SHA1 nhng thc cht ngi ta cha dng n SHA-2 v cha tin vo tnh nng bo
mt ca SHA-2. Chnh v vy cn a chng thc s vo trong ng dng giao
dich l iu cn thit v cp nht SHA-2 khi c mt t chc chuyn gia bo mt
khng nh tnh nng an ton bo mt ca SHA-2.
91
PHN 7
TI LIU THAM KHO
CBHD: Th.s Nguyn Thnh Sn
92
93
http://csrc.nist.gov/publications/index.html
http://www.itl.nist.gov/fipspubs/index.htm
http://www.schneier.com/blog/archives/2005/02/sha1_broken.html
http://scottstuff.net/blog/
http://www.schneier.com/blog/archives/2005/02/rsa_conference.html
http://www.schneier.com/blog/archives/2005/02/security_risks.html
94
http://www.aspencrypt.com/index.html
95