CHỮ KÝ SỐ TRONG GIAO DỊCH MẠNG

CH K S TRONG GIAO DCH MNG
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
PHN 1
TNG QUAN V CH K S TRONG
GIAO DCH MNG
1.1.
Gii thiu
Thng mi in t l hnh thc kinh doanh, hot ng bng phng php
in t, l vic trao i thng tin, d liu thng qua cc phng tin cng ngh
in t m khng cn in ra giy trong bt c cng on no trong qu trnh giao
dch.
Trong s pht trin nhanh chng ca Internet ko theo mt lot cc dch
v mi ra i nh tr chuyn, qung co, t vn, t hng, bn hng qua
Internet. Trong s , dch v thng mi in t (TMT)(Electronic-Commerce)
l mt bc nhy vt trong vic ng dng Internet vo cuc sng v kinh doanh.
Thng qua TMT, nhiu loi hnh kinh doanh mi c hnh thnh, trong c
vic mua bn hng trn mng. Vi hnh thc ny, ngi tiu dng c th tip cn
vi hng ha mt cch d dng v nhanh chng hn rt nhiu so vi cch thc
mua bn truyn thng, ng thi cn tit kim thi gian ngi dng c th u
t vo vic khc. Ngoi ra TMT cn gip con ngi c th tm kim t ng
theo nhiu mc ch khc nhau, t ng cung cp thng tin theo nhu cu, s thch
v con ngi c th ngi ti nh mua sm theo mun.
Nhng l do trn cho thy u im ca TMT em li l mt th mnh
pht trin nn kinh t t nc v ci thin i sng ngi dn.
CBHD: Th.s Nguyn Thnh Sn
SVTH : T, Hoi, Phc, Thanh

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
1.2.
t vn
Trong khi TMT pht trin rt mnh trong khu vc cng nh trn th gii
th Vit Nam(VN) vn cn hn ch bi thi quen hay ra ch, n ca hng

mua, tr tin v mang hng v. Hay cng mt phn do Internet VN cha n
c tng gia nh v lut cho TMT cng cha ph bin. Chnh nhng vn
ny mt phn ni ln c s hn ch trong TMT VN. cho TMT n
c tng ngi, tng nh, cng mt nim tin ca nhng ngi khi tham gia
TMT, nhm chng em xy dng CH K S TRONG GIAO DCH
MNG nhm p ng tnh hnh TMT VN. C th y cha l mt dch v hon
chnh nhng vi nhng tng ban u ny hy vng chng em c th pht trin
v hon thin trong tng lai p dng v em li nhng li ch thit thc cho
con ngi Vit, hay s pht trin TMT VN. Chnh v th, chng em rt mong
s ng gp kin ca qu thy c cng cc bn chng em c thm kinh
nghim cng nh c thm nhng tng hay trong dch v ca mnh. Chng em
xin chn thnh cm n!
1.3.
Mc tiu lun vn
Trc ht lun vn gip cho chng ta hiu v tm quan trng ca thng mi
in t v nhng ri ro trong khi giao dch v xut bin php khc phc.
Lun vn gii thiu nhng thut ton bo mt v xc nhn thut ton c
xem l hiu qu nht trong qu trnh bo mt hin nay.
Ngoi ra lun vn cng gii thiu vn gip chng ta tin tng hn v giao
dch trn mng v c khng nh qua ch k s.
Lun vn cng khng nh c vn khuyt im m cn c gii quyt
trong thi gian ti l khuyt im ca ch k s.
1.4.
B cc lun vn

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Lun vn bao gm 6 chng:

Chng 1: Trnh by tng quan v ch k s trong giao dch mng, vi
chng ny chng ta hiu r vic ra i ca ch k s
Chng 2: S hiu r v li ch thng mi in t, nhng cch tn cng v
cch khc phc trong qu trnh giao dch.
Chng 3: Gii thiu nhng thut ton gip bo mt thng tin v xut
nhng thut ton a vo nhng ng dng c th.
Chng 4: Gii thiu hm bm v ch k s nhm phc v s tin cy trong
qu trnh giao dch.
Chng 5: Ph lc a ra m hnh ng dng ca lun vn.
Chng 6: Kt lun khng nh vn t c trong lun vn v vn
cha t c trong lun vn, xut hng pht trin, nhng kh khn trong qu
trnh hon thnh lun vn.
Chng 7: Ti liu tham kho.

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
PHN 2
GII THIU THNG MI IN T
2.1.
Tnh hnh TMT

TMT c bn l vic mua bn hng ha, dch v trn Internet hay ni mt
cch khc l cc ca hng o trn Internet. Ti cc nc pht trin c trnh

ng dng cng ngh thng tin cao, vic bn l hng ha, dch v qua Internet
kh ph bin. Nhiu t la doanh thu t cc doanh nghip trn ton th gii
c sinh ra t TMT. Trong cc sn phm ch yu c mua bn qua
Internet l cc loi sn phm my tnh, sch (amzone.com), a(cdnow.com), hay
dng vn phng (suppliesonline.com).
Chnh nh gim thiu cc trung gian trong mua bn hng ha, dch v v tit
kim chi ph trong vic m ca hng v trng by sn phm, nhng doanh nghip
ch da vo phng php truyn thng (trc tip gp g khch hng) nay cng c
k hoch m cc trang web TMT bn hng v gii thiu sn phm hay t nht
cng tham gia qung co trn mng Internet.
Bng nhng cng ngh phn mm hin i v bn cht tng tc hai chiu
ca Internet cc cng ty v doanh nghip cn c th thu nhp c cc thng tin
v c nhn ngi tiu dng v xu hng tiu dng ca h thng qua cc th tc
ng k, t hng, giao hng v thanh ton.
Do vic mua bn qua Internet hay TMT l hon ton t ng nn yu cu
v c s h tng trong h thng ti chnh, ngn hng v cc cng c thanh ton
cng phi ng b, hin i, thng sut v bo m. Hin nay h thng thanh ton
bng th VN cn cha pht trin nu khng ni l qu s khai. Ngi dn vn
cha c thi quen m ti khon ti ngn hng v tin mt vn l cng c thanh
ton chnh trong mi hot ng mua bn. Chnh v vy TMT VN vn cha

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
pht huy ht tim nng ca n. Ngi dn nu c iu kin mua hng trn Internet
th cng ch c th thc hin thao tc chn hng v t mua, cn giao hng v
thanh ton vn phi thc hin theo cch truyn thng. Mt khc, s thu bao
Internet hin nay ti VN cn thp v cc ph s dng cn kh cao so vi thu
nhp nn mc ph bin ca Internet cn rt hn ch. Do , TMT thc t cn rt
xa l vi a s ngi dn VN. Chnh v vy, cc cng ty, cc t chc v cc doanh
nghip phi l nhng ngi tin phong trong lnh vc ny bi li ch ca TMT
vi nhng i tng s dng ny l rt ln v khng b hn ch nh nhng ngi
tiu dng n l.
i vi nhng doanh nghip v t chc c quan h lu di, uy tn v tin
tng ln nhau, h c th s dng mt trong cc hnh thc ca TMT l trao
i d liu in t (EDI). Cc d liu mang tnh thng mi s c trao i trc
tip gia cc doanh nghip di cc nh dng thng nht. Bng cch ny, cc
doanh nghip s c kh nng chia s ti nguyn thng tin ca mnh. Hp tc trong
cc d n nghin cu hay thm ch c th k hp ng trc tip qua Internet m
khng cn phi gp mt, tit kim c nhiu thi gian v chi ph.
Tuy nhin vn quan tm nht i vi nhng ngi tham gia vo TMT
chnh l an ton ca cc cuc giao dch. Vic phi tit l cc thng tin chi tit v
c nhn hay t chc i khi gy nn nhng hu qu kh lng, c bit khi nhng
thng tin quan trng ny ri vo tay cc tin tc (hacker) c mc ch xu, nh th
c th xy ra hin tng canh tranh khng lnh mnh, nng th c th xy ra hin
tng tht thot ti khon giao dch. Do , hng lot cc cng ngh m bo an
ninh web c pht minh v s dng nh SSL (Secure Sockets Layers), SET
(Secure Electronic Transaction)
Mt iu khng th ph nhn l s ra i ca Internet l mt cuc cch
mng ln trong ngnh thng tin, m ra mt phng thc hon ton mi nht rt
hiu qu trong cng tc tip cn, thu thp, phn tch v trao i thng tin. Khng

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
nhng th, cc ng dng khc ca Internet nh TMT to iu kin cho nhng

ngi s dng Internet nhng c hi mi trong mua bn, giao dch, y mnh sc
tiu th hng ha, dch v trn ton th gii, tng hiu qu hot ng kinh doanh
ca cc doanh nghip, c bit trong nn kinh t m v xu hng hi nhp vi nn
kinh t th gii v khu vc(WTO). Khi ngi ta ni v TMT, l hu ht ngi ta
ni v kiu kinh doanh bun bn cc sn phm, hay cc kiu dch v trn mng
Internet, nhng thc t th TMT c ngha rng ln hn.
2.2.
Giao dch in t
2.2.1. Khi qut

Giao dch in t ch l vic thc hin nhng giao dch thng mi da trn
cc cng c in t (Electronic) m c th l mng Internet v www (World Wide
Web - tc l nhng trang web hay website)
V d: vic trng by hnh nh hng ha, thng tin v doanh nghip trn
Website cng l mt phn ca giao dch in t, hay lin lc vi khch hng qua
E-mail, tm kim khch hng thng qua vic tm kim thng tin trn mng Internet
v.v
C nhiu cp thc hin giao dch in t. cp c bn, doanh nghip
c th ch c Website trng by thng tin, hnh nh, tm kim khch hng qua
mng, lin h vi khch hng qua E-mail m thi. Cp cao hn th cc doanh
nghip c th thc hin mt s giao dch trn mng nh cho khch hng t
hng ngay trn mng, qun l thng tin khch hng, n t hng bng c s d
liu t ng trn mng, c th x l thanh ton qua mng bng th tn dng.
2.2.2. M hnh
A.
Loi hnh giao dch

Thng mi in t c th c chia thnh 3 loi chnh:

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Business-to-Business (B2B): TMT B2B l mt khi nim ch cc hot

ng thng mi t doanh nghip n doanh nghip TMT trn Internet.
Business-to-Customer (B2C): TMT B2C l mt khi nim ch cc hot
ng thng mi t doanh nghip bn cc sn phm hay cc dch v ti cho khch
hng s dng TMT trn Internet.
Customer-to-Customer (C2C): Loi hnh ny kh ph bin mt vi nm tr
li y. V d ph bin nht l hnh thc bn u gi trn mng m khch
hng va c th va l ngi bn m cng c th l ngi mua.
B.
Cc h thng in t
H thng mi gii in t: E-Broker
Cc h thng mi gii in t nh BargianFinder, Jango thng cung cp
cng c tm kim thng tin gip khch hng c th d dng tm kim cc hng ha
v dch v m h cn. Khch hng s a yu cu tm kim v h thng mi gii
s t ng tm kim nhng nh cung cp c kh nng p ng yu cu ny. Kt
qu l danh sch cc hng ha v dch v cng vi a ch lin lc hoc a ch
Web ca nh cung cp tng ng, danh sch c th sp xp theo tiu chun gi c.
Tuy nhin, h thng ch h tr giai on tm kim thng tin, cn nhng cng vic
khc nh t hng, thanh ton, phn phi phi do khch hng t thc hin trc
tip vi nh cung cp h chn.
H thng u gi in t: E-Auction.
Cng vi s pht trin ca Internet, nhiu website bn u gi ra i,
trong c mt s website ni ting nh E-Bay, Onsale, FirstAuctionCc site
bn u gi lm trung gian m phn v gi c hng ha gia ngi mua v ngi
bn vi chi ph thp hn nhiu so vi cc cuc u gi truyn thng. Bt c ngi
dng Internet no cng c th tham gia mua hoc bn hng ha trong cc cuc bn
u gi trc tuyn. Nhiu khch hng thc hin vic u gi mua v bn linh

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
kin my tnh, chi, qun o, c v nhiu th linh tinh khc. Ngay c cc

cng ty cng tham gia bn hng ha tn kho, hng thanh l.
Trung tm TMT(Thng Mi in T):
Mt trung tm TMT l mt tp hp ca hng in t c qun l bi mt
t chc chung. T chc ny thng l mt nh cung cp dch v ni ting, c uy
tn c nhiu ngi dng tin cy. Mt v d ca m hnh ny l Electronic Mall
Bodensee.
Trung tm TMT l ni lu tr cc thng tin sn phm ca nhng nh cung
cp. V th, trung tm TMT rt ph hp vi cc cng ty nh khng c iu kin
t xy dng h thng TMT ring mnh. E-Auction cung cp cho khch hng
cc dch v tm kim, so snh thng tin trong mt catalog chung ca nhiu nh
cung cp c ng k vi h thng. t hng ng thi vi nhiu nh cung cp
bng cch dng gi mua sm in t v thanh ton bng mt phng thc chung.
Tuy nhin, trung tm TMT khng quan tm n vic thc hin mt giao dch c
th no, cc n t hng s c chuyn v cho nh cung cp.
a s nhng h thng TMT p dng cc m hnh kinh doanh k trn thch
hp vi cc dch v bn l B2C hoc C2C. Tuy nhin, trong khuynh hng pht
trin ca nn kinh t, mt s th trng in t khng ch p ng c nhu cu
mua sm ca nhng ngi tiu dng m cn phi c kh nng h tr cc giao dch
gia cc doanh nghip. Tt c cc hot ng lin quan n vic kinh doanh phi
c h tr trong mi trng in t, t qung co, cung cp thng tin n vic
tr gi hay m phn hp ng, cc hot ng ti chnh cng nh dch v hu i
khch hng.
2.3.
An ton khi giao dch qua mng
2.3.1. Cc ri ro khi giao dch

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Bn cht ca TMT l hnh thc kinh doanh qua mng Internet. Internet
ngoi vic em li nhiu li ch cn l mi trng pht trin TMT, v n cng l
mi trng rt thun li cho k ph hoi thc hin cc xu ca mnh nh xem
trm thng ip trn ng truyn, tn cng ph hoi ni dung thng tin, gi mo
thng ip hay gi mo ngi dng.
C rt nhiu loi tn cng an ninh lin quan n vic xc thc hoc h thng
nh cch tn cng vo cc thnh phn mng, cc thnh phn, phn mm thirdparty, cch tn cng vo h iu hnhCch tn cng xc thc trong TMT
thng gp l:
+ Tn cng bng xem trm:
y l kiu tn cng tuy khng nh hng trc tip n ni dung thng tin
nhng nh hng n tnh ring t (privacy) ca thng tin. K ph hoi bt cc
gi tin TCP/IP bi chng c th cha cc thng tin nh username v password ca
ngi dng. Kiu tn cng ny thng c phn loi nh kiu tn cng man-inthe middle, bi bt cc gi thng tin k ph hoi phi nm gia h thng ang
truyn thng. Kiu tn cng ny xy ra do vic gi d liu qua cc knh truyn
dng vn bn thng thng.
+ Tn cng bng gio mo ID.
Xut hin khi mt k gi mo hay mo nhn l mt ngi khc hoc mt x
l khc ph hoi hoc x l ph hoi. Kiu tn cng ny cho php k ph hoi
trn Internet gi mo a ch IP ca h thng.
+ Tn cng bng vt cn (Brute-force attacks).
Tn cng bng vt cn l tn gi ca mt hnh thc tn cng ph bin nhm
ly thng tin v password v username ca ngi dng. K tn cng dnh quyn
truy xut vo thit b lu tr cc thng tin nh username v password, sao chp
file h thng hoc h thng c s d liu lu cc thng tin ny. Nu thng tin
c m ha dng cho thng tin tht, sau n s so snh kt qu nhn c vi

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
bn m ha username hoc password ly c v c nh th cho n khi c c

mt cp trng khp. Kiu tn cng ny khng my hiu qu bi lng kha phi
th c khi l qu nhiu m khng c thi gian th ht tt c. Nhng ngc
li, c khi lm c rt d dng bi hu ht ngi dng thng t kha qu n
gin, qu ngn v vi nhng k t thng thng. Kiu tn cng ny cn c bit
di tn gi l tn cng th bo hay tn cng tm kha v khng c cch no
phng th vi kiu tn cng ny, bi n gin khng th no ngn chn nhng k
tn cng khng th mi kha c th.
+ Tn cng dng T in (Dictionary attacks).
Tn cng dng t in l mt phin bn thng minh ca cc kiu tn cng
vt cn, s dng cc cng c tn cng t ng. Cc cng c ny c kh nng lm
vic trn giao din web m khng cn truy cp vo thit b lu tr thng tin y
quyn cha username v password. Khi c cho mt username, cng c tn cng
s th kt hp username vi mt c s d liu password khng l (nh mt t
in). Kiu tn cng ny c xc sut thnh cng cao v ngi ta c khuynh hng
t cc password sao cho d nh. K h xy ra kiu tn cng ny l do h thng
gii hn s ln xc thc lin tc khng thnh cng hoc mc gii hn qu ln.
Gii php y l ngn chn s t ng tn cng bng cch t mt chn trn cho
s ln xc thc khng thnh cng lin tip. iu ny c th thc hin bng cch
kha t ng ti khon hoc dng mt th tc timeout. im yu cn li cho gii
php timeout hoc t ng kha ti khon l khi cc gii php ny ngn chn
nhng ngi dng hp l truy cp vo h thng TMT bi ti khon ca h c
th b kha. iu ny mu thun vi mt trong cc mc tiu an ninh thit yu ca
h thng TMT l tnh sn sng. Bin php gii quyt im yu ny l cho
php nhng ngi dng hp l c th d dng t m kha cho ti khon ca mnh.
+ Tn cng lp li.
10

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Tn cng lp li l kiu tn cng m k ph hoi s bt dy xc thc truyn

bi ngi dng hp l trn mng v sau cho server xc thc cho chnh anh
ta. Tn cng ny xy ra do quyn truy cp knh truyn thng v do d liu c
gi i dng vn bn thng thng. Gii php thch hp l s dng m ha v t
timestamp cho mi d liu nhy cm truyn trn knh truyn thng.
+ Tn cng bng gii m y quyn.
y l kiu tn cng b sung cho cc kiu tn cng nghe trm, tn cng vt
cn, tn cng dng t in trn m mc tiu l b gy thut ton m ha dng
m ha thng tin username v password ngi dng.
2.3.2. K thut p dng
Ph bin thng tin:
Cc trang Web c thit k da trn ngn ng nh du siu vn bn
HTML v kt hp vi nhiu hnh nh minh ha sinh ng thu ht khch hng.
Mc d HTML l ngn ng rt tt trnh by thng tin trn trnh duyt Web ca
ngi dng nhng khng em li kh nng tng tc ca khch hng i vi nh
cng cp. khc phc vn ny, cc h thng Web thng lin kt vi cc c
s d liu cha thng tin v hng ha v khch hng. Hin nay, cc h tr cho
Web l Javacript, Vbcript v cc applet cng c s dng.
Truy xut thng tin t database:
Cc ng dng TMT thng a cho khch hng cc catolog cha danh
sch cc hng ha, dch v ca mt hoc nhiu nh cung cp. Catolog bao gm
nhiu trang Web c trnh by theo nh dng HTML nhng ni dung li c
pht sinh ng t mt c s d liu. Trong mi trng WWW cc thao tc lin
quan n Database c thc hin nh chng trnh dng nghi thc CGI
(Commom Gateway Interface) chy trn my ch.
Lin kt hot ng gia cc h thng:
11

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
TMT s kh pht trin nu cc th trng in t khng th lin kt hot

ng vi nhau v khng th truy xut n nhiu ngun thng tin hn tp.
Mt trong s cc gii php ni bt gii quyt vn lin kt hot ng l
da vo cc cng ngh CORBA c pht trin bi OMG (Object Management
Group). CORBA a ra kiu kin trc hng i tng v khng ph thuc ngn
ng cho vic ni kt nhng thnh phn hn tp, thnh phn ny c vit bng
ngn ng khc nhau c t trn cc my ch khc nhau. Cng vic ny c
thc hin bng cch dng Interface Definition Languge (IDL) v mt trung gian
tng tc gia my ch v my khch l Object Request Broker (ORB).
Tuy nhin, ng dng trn my khch c th truy xut giao din IDL ca
my ch phi c vit bng mt trong cc ngn ng C++, C#, Smalltack, Java v
dng mt phn mm ORB (ORB implemention). Hn na, CORBA da vo s
truyn thng ng b RPC. V th, tham gia vo cc h thng TMT da vo
CORBA cc my khc cn c mt s cu hnh c nh ngha trc. iu ny
kh c th p ng c mong mun l mi ngi tiu dng c th mua sm trn
Internet ch thng qua mt trnh duyt Web.
Hin nay, khuynh hng pht trin mnh i vi vn lin kt hot ng
gia cc ng dng TMT l nh dng thng tin c trao i gia cc ng dng
theo ngn ng XML (Exensible Markup Languge). Khc vi s kt hp cht ch
gia ni dung v cu trc vn bn ca ngn ng HTML, vic hin th thng tin
trong cc tp tin XML c tch ri khi ngha ca thng tin. Nh , cc
chng trnh my tnh c th hiu ng ngha ca cc trang Web c nh dng
theo c php XML mt cch d dng. XML c dng km vi cc Document
Type Definition (DTD) l cc tp tin mu m t cc thnh phn ca vn bn
XML. Vic dng DTD chun s mang li s nht qun ng ngha ca thng tin
c trao i gia cc nh cung cp thuc mt ngnh cng nghip no . iu
12

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
ny em li kh nng lin kt hot ng gia cc ng dng TMT ca nhiu nh

cung cp khc nhau.
Mc d ngn ng XML khng mnh bng cc nghi thc phc tp c dng
trong k thut phn tn nh CORBA, nhng chng c trin vng mang li s lin
kt rng hn v n gin hn cho cc h thng TMT.
T ng ha x l: Intelligent Agents.
Vi ngun thng tin khng l trn Internet ngi dng kh khn trong vic
la chn cc thng tin hu ch cho mnh. H khng th ngi ht gi ny sang gi
khc trn my tnh ch tm mt mn hng trong mt cuc bn u gi trc
tuyn. Ngi dng cn c cung cp cc cng c t ng ha cho mt s cng
vic phc tp v tn thi gian. Phn mm kiu Agent l mt gii php thch hp
cho vn ny.
Agent l cc chng trnh thi hnh cc nhim v c bit thay mt cho
nhng ngi s dng. Agent c phn bit vi cc loi phn mm khc nh kh
nng hon tt cc cng vic phc tp m khng cn s can thip ca ngi s
dng. Agent c cc c tnh sau:
+
T tr: Agent c th t kim sot hot ng ca n sau khi c giao

vic m khng cn s can thip ca ngi dng hay cc Agent khc.
Giao tip: Agent c kh nng lin lc v trao i vi cc Agent khc.
i ng: Agent c kh nng nhn c cc thay i trong mi trng

ca n v i ph li mt cch kp thi vi nhng thay i ny.
Hng ch: cc Agent u c mt mc tiu v hnh ng c t

mc tiu .
Vi cc c tnh k trn, phn mm Agent c pht trin trong cc h thng

TMT vi mc ch gip nhng ngi tiu dng gim thi gian tm kim
thng tin v la chn hng ha thch hp (nh gi c r nht), thc hin s lin kt
13

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
gia ngi mua v ngi bn, gi cc sn phm ph hp vi s thch ca ngi

tiu dng hoc so snh do nhiu nh cung cp a ra i vi mt mn hng c th.
Ngoi kh nng tm kim v tng hp thng tin theo yu cu ca ngi s dng,
cc Agent cn gip ngi s dng thc hin t ng qu trnh m phn hp
ng. m phn l mt cng vic phc tp v tn thi gian. Nu cc Agent c
cung cp chin lc m phn hiu qu, chng s c kh nng em li cho ngi
s dng s tha thun v iu kin mua bn c li nht.
Cc Agent quan tm n s thch ca ngi s dng, thi hnh cc c ch
c nh ngha sn trc v c kh nng thch nghi vi nhiu hon cnh khc
nhau c th hon tt mt cch t ng ha cc cng vic do ngi dng giao
ph. iu ny em li kh nng h tr hon ton cc hot ng tm kim thng
tin, m phn hp ng, t hng, thanh ton ca mt giao dch TMT trong
mi trng Internet.
Vic p dng Agent vo TMT l mt hng pht trin mnh trong tng
lai. Tuy nhin cn c nhiu u t v nghin cu su rng hn na c th trin
khai tht s trong cc th trng giao dch in t. ng thi phi c s h tr t
cc lnh vc khc nh ngn hng, php l
2.3.3. Vn bo mt thng tin ngi mua
Ngh rng mng Internet hin nay c bo mt cho vic kinh doanh
khng ? Mc d c trang b vi k thut m ha tin cy v cc cng ngh bo
mt khc nhau, a s ngi dng vn c mt ci nhn khng tin tng i vi vn
bo mt ca Internet. H cho rng Internet cn phi cung cp mc bo mt
cao hn cc th trng thc t. iu ny hon ton hp l bi v cc th trng
giao dch in t thiu i mt s b phn an ton c bn c trong th trng thc
t. Chng hn, ngi tiu dng s c mt bo m no khi mua hng ti ca
hng thc t vi ngi bn hng bng xng bng tht. Trong khi trn Internet,
14

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
ngi ta rt kh nhn ra u l nhng cng ty ma. Cc i tc kinh doanh trc

tuyn khng th chc chn v ngun gc cng nh mc tin cy ca i tc kia.
gii quyt vn ny, i hi phi c khun kh thch hp v cng ngh v
php l, v d nh ch k in t (electronic signature) cc c quan xc nhn tnh
hp l (certification authority)
Bo mt thng tin cn c tc dng bo v quyn li cho ngi tiu dng.
Vi cng ngh thng tin hin nay, ngi bn hng c th d dng thu nhp c
nhiu thng tin v khch hng ngay trong lc cho php khch hng tm kim v
xem cc thng tin v sn phm. Mc ch ban u l gip cho ngi bn (cng
nh cc nh nghin cu th trng) c th xc nh s thch ca khch hng, t
gii thiu cc mt hng ca mnh cho ng i tng hn. Vic ny c p dng
ngy cng rng ri v d liu v s thch ca khch hng tr thnh mt mt
hng TMT t gi. Tuy nhin, vic mua bn cc d liu v s thch c nhn ca
khch hng li c khuynh hng gy thit hi cho quyn li ca ngi tiu dng.
Trong TMT, cc d liu s lin quan trc tip n vic mua bn v thng
lng gi c. Khi bit c mc cu, ngi bn c th s t chi vic gim gi
cho ngi mua. Do , cn phi thit lp mt tiu chun v bo mt thng tin c
nhn v li ch ca ngi tiu dng, thay v ch s dng mt vi thng bo v cam
kt n gin ca ngi thu nhp thng tin nh hin nay.
Tuy nhin, mt s sng kin mi ang c th nghim trong TMT
thay th cc gii php mang tnh cht quy ch. Mt trong nhng sng kin cho
php ngi tiu dng quyn c bn cc thng tin ring ca h. Nh cp
trn, gii php da trn c ch th trng ny chuyn i thng tin c nhn thnh
mt loi hng ha. Hin nay, mt s nh cung cp sn sng cung cp cc dch v
trc tuyn min ph cho ngi dng i li vic ly cc thng tin v c nhn.
Trong trng hp ny, gi tr ca thng tin s bng vi cc gi tr ca cc dch
15

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
v c cung cp mt cch min ph. Theo mt cch no , bn thn ngi s

dng li tr thnh ngi bn thng tin.
2.4.
Vn thanh ton qua mng

Internet ni chung hin nay kh y i vi ngi mua v ngi bn
qua mng nhng khng tnh bo mt s dng h thng thanh ton trn mng
Internet. V th nhiu ng dng c gng lp y khong trng . n cui
nm 1999, c hn 80 c cu thanh ton ang cnh tranh mua bn trc tuyn.
Hu ht cc h thng thanh ton hin nay l mt trong 3 trng hp sau:
+
ng dng ca th Credit card (th thanh ton tn dng)
ng dng ca th Debit application
Smart card
Nm 1994, FVHI (First Vitual Holding Incorporated) pht trin mt h

thng credit card-based s dng trn Internet. Li th ca h thng ny l
ngi mua s c an ton khi giao dch trc tuyn m ch s dng trnh duyt
Internet v E-mail, khng cn mt phn mm c bit no. Ngc li ngi s
dng cng khng c tit l s th tn dng vi bt c mt ai, ngoi vic ngi
mua s s dng mt b danh hay VirtualPin c cung cp bi FVHI giao dch
mua bn. Hn th na, khng ch FVHI mt mnh a ra th trng m cn nhiu
cng ty cng a ra nhiu h thng cnh tranh bng hiu bit tt hn v ti chnh
cng tt hn. Trng hp ny bao gm c h thng thng tin v chin lc qun
l.
FVHI xy dng h thng thanh ton o trn Internet (The First Virtual
Internet Payment System (FVIPS)). FVIPS c b tr trn nguyn tc khng c
cch thc bo mt d liu no l thc s an ton, v nhng ci ch khng b
ph hng thng tin khi gi qua Internet. Khi s dng FVIPS, ngi s dng c th
to ra nhng li tc hng nm bng vic s dng th Credit Card. s dng
16

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
FVIPS, ngi s dng phi gi thng tin ca th Credit Card ca mnh n First
Virtual theo cch truyn thng c th l in thoi, fax hay E-mail. Sau , ngi
s dng c y quyn mt VirtualPin. VirtualPin nay l mt chui va s va k
t. Ngi s dng dng VirtualPin ny nh l mt b danh cho m s th tn dng
khi mua bn trn mng.
H thng ny lm vic nh sau: khi c mt phin mua bn th ngi mua s
gi VirtualPin ca h ti ngi bn ang tham gia trc tuyn, ngi bn s a
VirtualPin ca ngi mua v mt ci m t tm tt ca s mua bn ti FVHI,
FVHI s dng VirtualPin ny tm a ch E-mail ca ngi mua trong mng ni
b. First Virtual s gi mt E-mail ti ngi mua chng thc s lng hng mua.
Sau , ngi mua s gi mail li FVHI chng thc vic mua hng c hay khng,
nu vic mua hng c chng thc bi ngi mua th FVHI s tr ti khon
trong Credit Card ca ngi mua (vic x l ny khng kt ni vo mng) v gi
s xc nhn ny ti ngi bn. Sau ngi bn ng giao dch v cung cp dch
v hoc chuyn hng ti ngi mua.
Ngi mua cng c th hy b giao dch mua hng bng mt s la chn hi
p, v d nh ngi mua la chn hi p l t Fraud th vic bn hng s t
ng hy b v s kin ny c quay v FVHI iu tra. Trong trng hp
ny, s gian ln xy ra l rt kh khc vi cc h thng cch tranh khc, FVIPS
khng tin vo vic m ha d liu cng khng bt ngi mua phi s dng phn
mm hay phn cng c bit no hot ng
Cc h thng thanh ton thng mi khc trn mng.
+
Vo nm 1999 c nhiu h thng tr tin ang cnh tranh trn th
trng thng mi trn mng theo tng tnh cht. Mt s dng trong giao dch rt
nh nhng h thng ny trc tin c thit k tr cho chi ph nh nh s
cung cp thng tin v mi ln truy cp vo cc site hoc nhng trang web c bit.
Mt s h thng thanh ton khc kt hp cht ch vi h thng trung gian nh th
17

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Credit Card hoc thanh ton nhng vi iu kin bo mt tht kin c vng chc
nhng thng tin nhy cm i qua mt cch an ton v c th tin cy. Mt s
khc thuc nhng h thng s hu m ph thuc vo ngi s dng m nhng
ti khon vi nhng ngn hng trc tuyn c bit.
+Micropayment Systems: Millicent, NetBank v Digicash l ba cng ty tng
thit k cc h thng tr gip cho Micropayment. Sc mnh ca h thng thanh
ton ny l a ra nhng d liu ti chnh rt hin i, kp thi, nh ti hng ngy
nhng chuyn ci, hnh nh, bo, tp ch hoc nhng thng tin khc trc tuyn
l nhng ci min ph hin nay.
ng dng Debit Card vo h thng thanh ton qua mng. Hin nay ng dng
ca loi th ny cng c s dng rng ri trn th gii qua hai loi th l
Master Card v Visa Card.
Thun li ca cc loi th ny l phng thc thanh ton trc tip, nh
khch hng khng phi lo cc khon ri ro nh khi dng tin mt, nh mt, tin
gi, mang vc, tnh ton phi chi tr bao nhiu
Chng c th s dng c ti bt k my c th in t ti cc im bn
hng hoc my ATM ca bt c ngn hng no trong h thng, trn ton th gii.
Nh s thun li cn vt tri th ATM, khi th ATM ca ngn hng no ch
s dng c ti my ca ngn hng . Hin nay trn th gii hai loi th ny
c chp nhn thanh ton ti 24 triu im v hn 1 triu my ATM.
im c bit ca loi th ny c th s dng thanh ton trc tuyn trn
mng thng qua h thng trung gian uy tn v c s tin cy tuyt i. Cch thc
thanh ton ca h thng ny c thc hin nh hnh v sau:
18

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 2.1: M hnh thanh ton

Khi cc khch hng truy cp vo cc Website ca nh cung cp v chn mua
hng. Sau khi vic chn hng kt thc th bc k tip khch hng phi lm l thanh
ton. Trong bc ny th Form thanh ton ca nh cung cp s c y v h thng
trung gian s l. Sau khi xc nh vic mua bn gia khch hng v nh cung cp
c thc hin th h thng ny s tnh tin v thng qua h thng ngn hng s tr ti
khon ca khch hng v chuyn ti khon ti cho nh cung cp. Sau qu trnh mua
bn kt thc v nh cung cp s chuyn hng ti cho khch hng theo ng thi gian v
a im.
Cc h thng thanh ton thng mi khc trn mng.
+ T nm 1999 n nay c rt nhiu h thng thanh ton ang cnh tranh trn
th trng thng mi trn mng theo tng tnh cht. Mt s th chuyn dng trong mt
s giao dch rt nh, nhng h thng ny trc tin c thit k tr cho nhng chi
ph nh nh s cung cp thng tin v mi ln truy cp vo cc site hoc nhng trang
web c bit. Cn mt s h thng thanh ton ton khc th kt hp cht ch vi h
19

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
thng trung gian nh th Credit Card hoc thanh ton nhng vi iu kin bo mt tht
kin c vng chc nhng thng tin nhy cm i qua mt cch an ton, v c th tin
cy. cn mt s khc th thuc nhng h thng s hu m ph thuc vo nhng ngi
s dng m nhng ti khon vi nhng ngn hng trc tuyn c bit.
+
Vit Nam hin nay cng c mt s h thng thanh ton qua mng. V d
nh h thng siu th in t Golmart. Khch hng c th ng k s dng thng qua

cc website ca Golmart hoc cc vn phng giao dch, sau khi ng k khch hng s
c cung cp mt th GolCard. Th ny c s dng mua hng thng qua cc
website v cc i tc ca golmart.
20

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
PHN 3
CC THUT TON M HA
3.1.
Gii thiu
Trong TMT, s tin cy ca ngi dng tt nhin phi c m bo bng
cc phng tin khoa hc, k thut c chng minh. Nhng trn Internet
thng tin c truyn ti qua nhiu ng, nhiu ng, kh nng thng tin tht
thot trn ng truyn l khng th trnh khi. Bo mt hiu mt cch n gin
l phi c mt cch thc bo v cc ti liu, vn bn quan trng c lu tr trn
my tnh cng nh khi cc ti liu ny c gi qua mng Internet. V thc cht,
m ha l qu trnh bin i thng tin ban u (plainText) sang mt dng khc gi
l bn m (cipherText).
Mt h thng m ha bao gm cc thnh phn sau:
- PlainText : Bn tin s c m ha hay bn tin gc.
- CipherText : Bn tin c m ha hay bn tin m.
- Thut ton m ha v gii m :
+encryption : qu trnh chuyn bn tin gc sang dng mt m.
+
decryption : qu trnh gii bn tin dng mt m tr v bn tin gc.
+ cch chn kha : gi tr ton hc dng thc hin m ha.

Nhiu phng php m ha c a ra da trn nhng gii thut ton
phc tp, to kh khn cho nhng ai mun ph mt m m khng cn c
ai trao cha kha. Ni to kh khn l v trn l thuyt ta khng th ni vic tm
cha kha l v phng. Nhng nu tr ngi ln lm nn lng k gian th
l mt mc an ton tt.
Qu trnh m ha v gii m c th c minh ha theo s sau :
21

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 3.1: S m ha v gii m

3.2.
Phn loi
3.2.1. M ha bng kha b mt

Cc h thng m ha vi kha b mt cn c gi l m ha bng kha
ring, m ha i xng s dng duy nht mt kha cho c qu trnh m ha ln
qu trnh gii m.
C hai loi thut ton m ha b mt :
+
Stream Algorithms/Stream Ciphers : cc thut ton hot ng trn
vn bn bnh thng theo tng bit mt.

+
Block Algorithms/Block Ciphers : cc thut ton hot ng trn vn
bn theo cc khi (32 bit, 64 bit, 128 bit, ...).
22

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Mt s thut ton ang c s dng rng ri hin nay : DES, Triple-DES,

RC5, RC6, Rijndael ...
Qu trnh m ha v gii m bng cch s dng kha b mt c minh ha
nh hnh sau :
Hnh 3.2: S m ha v gii m bng kha ring
3.2.2. M ha bng kha cng khai

M ha bng kha cng khai cn gi l m ha bt i xng hay m ha
bng kha chung. S khc bit c bn gia mt h thng m ha bng kha b mt
vi h thng m ha bng kha cng khai l h thng m ha kha cng khai
23

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
dng hai kha khc nhau m ha v gii m. Do , mt b m cng khai s

bao gm hai kha: mt kha dnh cho ngi m ha thng c cng khai, v
kha cn li dng cho ngi gii m thng c gi b mt. Nh vy, h thng
m ha vi kha cng khai cn c mt qu trnh sinh ra hai kha m ha v
gii m thng ip. Cc kha ny c xem nh l mt i :
+Public-key (kha cng khai): c php cng khai m khng phi chu ri
ro v an ton. Kha ny c dng m ha thng ip.
+Private-key (kha b mt): khng c l. Mi thng ip c m ha
bng public-key ch c th gii m bng mt kha mt thch hp.
Mt s thut ton m ha cng khai ph bin : RSA, Diffie-Hellman KeyExchange Algorithm (dng cho vic phn phi v trao i kha).
Qu trnh m ha v gii m bng cch s dng kha cng khai c minh
ha nh hnh sau :
24

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 3.3: S m ha v gii m bng kha cng khai
3.3.
u Khuyt im ca hai phng php
3.3.1. Phng php m ha kha b mt

Cc u khuyt im ca h thng kha b mt (kha i xng) :
u im
Khuyt im
+ C th c thit k t tc + Trong qu trnh truyn thng gia hai
cao. Cc thit b phn cng h tr c ngi, kha phi c gi b mt cho
th t tc hng trm megabytes c hai pha.
mi giy trong khi vic thc thi bng + Trong mt h thng mng ln, s
phn mm ch t c khong vi lng kha cn c qun l rt nhiu.
megabytes mi giy.
Do vy vic qun l kha mt cch
+ Kha dng cho m ha kha i hiu qu i hi s dng mt b phn

xng tng i ngn.
tin cy th ba (TTP :Trusted Third
+ c xem nh thnh phn c bn c Party).

th trin khai xy dng cc k thut + Kha b mt cn c thay i
m ha khc bao gm khi to cc s thng xuyn.
ngu nhin, cc hm bm, cc k thut + K thut ch k s c pht trin t
tnh ton.
c ch m ha kha i xng i hi s
+ C th c kt hp to ra cc dng cc kha ln cho cc hm xc

thut ton m ha mnh hn.
nhn cng khai hoc l s dng mt

TTP.
3.3.2. Phng php m ha kha cng khai
25

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Cc u khuyt im ca h thng m ha kha cng khai :

u im
Khuyt im
+ Ch c kha ring th cn c gi b + Tc cho cc phng thc m ha
mt (tuy nhin vic xc nhn ca cc cng khai th chm hn rt nhiu so vi
kha cng khai cn c m bo).
cc m hnh kha i xng.
+ Vic qun tr cc kha trn mng i + Kch thc kha ln hn rt nhiu so

hi s tn ti duy nht mt thnh phn vi c ch m ha kha i xng.
tin cy TTP.
+ Khng c m hnh kha cng khai
+ Cp kha ring v cng khai c th no c chng minh l an ton. Phn

c s dng trong thi gian di.
ln cc m hnh m ha hiu qu ngy
+ Nhiu m hnh kha cng cng c nay c s an ton da trn cc gi

pht trin hnh thnh nn cc k thut thuyt ca mt tp nh ca cc vn
ch k s hiu qu. Kha c s dng l thuyt s hc.
cho hm kiu cng khai th nh hn rt + H thng m ha cng khai khng c
nhiu so vi dng kha i xng.
b dy lu i nh h thng m ha
+ Trong mt mng ln, s lng cc kha i xng, n ch c tm ra vo

kha cn thit c quan tm t hn so gia khong nhng nm 1970.
vi vic dng kha i xng.
3.4.
C ch m ha kha b mt
3.4.1. Khi qut

Vi s pht trin v tc cng nh v sc mnh ca cc chip vi x l,
chun m ha d liu (DES) vi kha 56 bit khng c xem l an ton i vi
kiu tn cng vt cn tm kha. Vic tng kch thc ca khi m ha cng
nh kch thc ca kha i hi kh nng tng tc ca qu trnh m ha v gii
m. Hin nay, mt kha 56 bit c xem khng cn an ton na, thay vo l
Triple-DES (m ha DES 3 cp) c s dng tng tnh an ton cho kha. Do
26

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
vy, mt trong nhng mc tiu c t ra l xy dng mt thut ton mi c

an ton cao vi tc nhanh hn hn Triple-DES.
p ng nhu cu trn vo nm 1997, hc vin quc gia M v tiu chun
v k thut (NIST: the Institute of Standards and Technology) tin hnh mt
cuc chn la mt thut ton m ha vi kha i xng v thut ton c chn
xem l chun m ha cao cp AES (Advanced Encryption Standard). C rt nhiu
thut ton c ng k trong cuc cnh tranh t chun AES ny.
Cc thut ton mi m ha khi c chiu di 128 bit lm cho vic tn cng
bng cch lp mt t in on ni dung ca chui cn m ha tr nn kh khn
hn. Bn cnh , c th chn la cc gi tr chiu di kha 128, 192,v 256 bit.
Nm 1988, NIST thng bo chn ra c 15 thut ton mnh v i hi s
h tr v k thut ca cc chuyn gia v m ha phn tch, nghin cu nhm
chn ra thut ton hiu qu, an ton nht.
Tip sau nm thut ton c chn vo vng chung kt bao gm:
Rijndael, Twofish, Serpent, RC6, MARS.
Cui cng vo thng 2 nm 2000, thut ton c tn Rijndael c thit k
bi Vincent Rijmen v Joan Daemen c NIST cng nhn l chun m ha
cao cp AES. Thut ton Rijndael c chn l chun m ha cao cp da vo rt
nhiu cc yu t bao gm tc , tnh an ton, kh nng tch hp vo phn cng ...
3.4.2. C ch m ha DES(Data Encryption standard)
A.
Gii thiu
DES c vn phng tiu chun ca M (U.S. National Bureau of
Standards) cng b vo nm 1971 s dng trong cc c quan Chnh ph lin

bang, v sau c pht trin ti cng ty IBM da trn mt m LUCIFER ca
Feistel.
27

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
DES lm vic trn tng khi d liu vi kch thc khng i. Do , ton
b vn bn m trc ht phi chia thnh tng khi d liu vi kch thc ph hp,
c th i vi gii thut DES mi khi l 64 bit. K n phi to mt kha di 64
bit, trong 56 bit c dng trc tip bi b m v 8 bit cn li dng kim
sot li. Khi 56 bit kha c dng m ha tng khi 64 bit vn bn gc
thnh 64 bit vn bn mt m s c truyn ln mng. Bn cnh , dng mt
kha vi bn m gii m thng tin nhn c v ln lt tin hnh kt ni cc
khi ny li thu c vn bn ban u.
Qu trnh m ha tng qut ca DES c minh ha nh sau:
28

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 3.4: S m ha v gii m vi DES

B.
nh gi
Nm 129979, Hellman vit mt bi bo vi tiu "DES s hon ton
khng an ton trong vng mi nm na". Cuc tranh lun bt u t kha DES
c chiu di kh ngn c th c tm ra sau mt s bc vt cn.
Tuy nhin nu s bit dng cho kha cng ln th kha cng tr nn xc nh
v cng kh ai c th thc hin c gii m mt cch bt hp php.
Nu dng 56 bits kha trong gii thut DES s c 2 56 = 7.2*1917 kh nng
chn cc kha khc nhau. Ngha l nu dng cch vt cn kha th cng mt
khong 256 bc vt cn tm ra c kha, vic ny cng ging nh tm mt ht
ct trn sa mc. Nm 1977, Deffie v Hellman ngh mt my bao gm mt
triu b vi x l c th th mt triu kha mi giy, vi tr gi khong 20.000.000
USD/my c th vt cn tm ra kha trong vng 20 gi. Nm 1984, Hoormaert,
Goubert, v Desmedt ngh mt my tnh gm 25.000 thit b c kh nng th
1.13 triu kha mi giy vi tr gi khong 1.000.000 USD/my c th vt cn
khng gian kha trong vng 4 tun.
C.
M rng
tng cng an ton ngi ta ngh ti vic m ha mt khi vn bn
nhiu ln. Do vy, s tip cn ca Triple-DES l m ha 3 lp nhm tng cng

an ton. Qu trnh ny chnh l m ha d liu vi mt kha, sau gii m
vsi mt kha th hai v cui cng l m ha ln na vi kha th ba.
Qu trnh trn c minh ha nh sau :
29

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 3.5: S m ha v gii m vi DES
3.4.3. C ch m ha RC5
A.
Gii thiu
Thut ton m ha RC5 do gio s Ronald Rivest ca i hc MIT cng b
vo thng 12 nm 1984. y l thut ton m ha theo kha b mt. Ngay t khi

c gii thiu RC5 c quan tm rt nhiu do tnh an ton ca n.
B.
Thut ton
B.1.
nh ngha cc gi tr
RC5 c xc nh nh mt RC5-w/b/r trong :
+w : kch thc khi cn c m ha (gi tr chun l 32 bit, ngoi ra ta c
th chn 16 hay 64 bit).
30

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
+r : s vng lp (gi tr t 0,1,...,255)

+b : chiu di kha theo byte (0 n 255)
Cc gi tr thng dng l : w = 32, r = 20, cn chiu di kha c th 16, 24,
hay 32 byte.
i vi tt c cc bin, cc thao tc RC5-w-r-b trn khi w-bit s dng cc
ton t c bn sau:
a + b : php cng module 2w
a - b : php tr module 2w
a xor b : php ton xor
a <<< b : php ton quay tri a sang tri t nht log2w bit ca b
Trong thut ton RC5 qu trnh m ha v gii m u cn qua mt qu trnh
quan trng l qu trnh m rng kha.
B.2.
M rng kha
tng an ton cng nh vic bo v kha b mt cho ngi dng. Vic
m rng kha l mt chiu nn khng th suy ngc li gi tr ca kha K khi

bit c cc gi tr ca kha m rng. y cng chnh l mt c im ni bt
ca thut ton RC5.
Thut ton m rng cho kha K ca ngi s dng thnh mt tp gm
2(r+1) cc kha trung gian. Cc kha trung gian ny c in vo mt bng kha
m rng S. Do vy, S l mt bng ca t = 2(r+1) cc gi tr nh phn ngu nhin
c quyt nh bi kha K. N s dng hai hng s l tng c nh ngha :
Pw = Odd ((e - 2)2w)
Qw = Odd ((0/- 1)2w
Trong :
e = 2.178281828459... (da trn s logarithms t nhin)
0/ = 1.618033988749... (t l vng)
31

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Odd (x) l s nguyn l gn x nht

Mt s gi tr khc :
t = 2(r + 1) : s phn t ca bng kha m rng S.
u = w/8 : u l s lng cc byte ca khi w
c = b/u
Qu trnh m rng kha bao gm cc bc sau:
+Bc 1 :
Chp kha b mt K[0,...,b-1] vo mng L[0,...,c-1].
Thao tc ny s dng u byte lin tc nhau ca kha K in vo
cho L theo th t t byte thp n byte cao. Cc byte cn li trong L c
in vo gi tr 0.
Trong trng hp b = c = 0, chng ta s t c v 1 v L[0] v 0.
+
Bc 2 :
Khi to mng S vi mt mu bit ngu nhin c bit, bng cch
dng mt php tnh s hc module 2w c quyt nh bi hng s l tng

PW v Qw.
S[0] = Pw
For i = 1 to t - 1 do
S[i] = S[i-1] + Qw
+
Bc 3 :
Trn kha b mt ca ngi s dng vo mng L v S.
A=B=0
i=j=0
v = 3 * max{c,t}
For s=1 to v do {
A = S[i] = (S[i] + A + B) <<<3
32

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
B = L[j] = (L[j] + A + B) <<< (A + B)

i = (i + 1) mod (t)
j = (j + 1) mod (c)
}
Lu rng: hm m rng kha l mt chiu, do vy
khng d dng tm ra kha K t S.
Thut ton m rng :
Input : kha b c np v mng c phn t L[0,...,c-1]
S vng lp r
Output : mng kha S[0,...,2r + 1]
S[0] = Pw
S[i] = S[i - 1] + Qw
A=B=0
i=j=0
V = 3 * max {c, t}
For s = 1 to v do {
A = S[i] = (S[i] + A + B) <<< 3
B = L[j] = (L[j] + A + B) <<< (A + B)
i = (i + 1) mod (t)
j = (j + 1) mod (c)
}
B.3.
Qu trnh m ha
Thut ton s mi ln m ha trn hai khi w bit, gi s l A v B. V sau
qu trnh m ha s cho ra hai khi c m ha A' v B'.
33

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Ban u A s c cng vi gi tr kha m rng S[0] v B s c cng

vi S[1]. Sau qu trnh m ha s thc hin bin i A da vo gi tr ca B
bng cc php ton Xor v quay trn tri. Tip tc gi tr ny s c cng tip
vi gi tr kha m rng S[2]. Kt qu ny c dng tip tc bin i gi tr
ca B ging nh trn. Ton b qu trnh ny s c thc hin r ln. Kt qu cui
cng bc r s l gi tr c m ha A', B'.
Qu trnh m ha v gii m c th c minh ha nh sau :
Hnh 3.6: S m ha v gii m vi RC5
34

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Thut ton m ha:

Input : gi tr gc c lu tr trong hai khi w-bit A, B
S vng lp r
w-bit kha vng lp S[0,...,2*r + 1]
Output : gi tr m c lu trong hai khi w-bit A', B'
A = A + S[0]
B = B + S[1]
For i = 1 to r do {
A = ((A XOR B) <<< B) + S[2i]
B = ((B XOR A) <<< A) + S[2i + 1]
}
A' = A
B' = B
Thut ton gii m :

Qu trnh gii m chnh l qu trnh i ngc li qu trnh m ha
c c ci gi tr gc.
Thut ton gii m nh sau :
Input : gi tr m c lu tr trong hai khi w-bit A', B'
S vng lp r
w-bit kha vng lp S[0,...,2r + 1]
Output : gi tr gii m c lu trong hai khi w-bit A, B
For i = r downto 1 do {
B' = ((B' - S[2i + 1]) >>> A') XOR A'
A' = ((A' - S[2i]) >>> B' XOR B'
35

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
}
B = B' - S[1]
A = A' - S[0]
B.4.
nh gi
Thm m RC5 :
+Theo kt qu nh gi an ton ca cc thut ton th RC5 vi 12 vng
lp v m ha khi 64-bit th cung cp an ton tng ng vi thut ton DES

khi th vi phng php gi m, 244 cho RC5 v 243 DES.
Bng m t s thao tc cn thc hin thm m RC5 m ha 64 bit
S vng lp
4
Thm m Differential (vi 27
6
216
8
228
10
236
12
244
14
252
16
261
18
>
thng tin ngun c chn)

+
Khi s vng lp ln n 18 th vic thm m trn l thuyt l khng
th thc hin c (do i hi khong 2 128 thao tc cho khi 64 bit). Do vic tng
thm s vng lp l tng thm an ton cho RC5. Ngi ta nhn xt rng RC5
vi 16 vng lp v m ha khi 64 bit c th cung cp an ton rt tt chng
li cc thut ton thm m.
u im :
+RC5 l mt thut ton m ha khi vi tc nhanh c thit k cho vic
s dng d dng cho c phn cng ln phn mm.
+ RC5 l mt thut ton c tham s ha vi : mt bin m t kch thc
khi, mt bin cho s vng quay, v mt cho chiu di kha.
+ RC5 th rt n gin : c ch m ha da trn ba ton t chnh : cng,
exclusive-or v quay. V th, RC5 d ci t v phn tch hn cc thut ton m
ha khi khc.
36

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
+Mt c im ni bt khc ca RC5 l cc thao tc quay s dng cht ch

cc d liu ph thuc vi nhau nhm trnh c cc php thm m tuyn tnh v
vi phn.
+ C ch m rng kha ca RC5 l mt chiu. Do vy cc hacker kh c th
phc hi li kha chnh ngay c khi xc nh c b kha m rng.
+ Mi qu trnh m ha v gii m ca RC5 c thc hin trn hai khi w
bit do vy c th tng tc m ha.
Khuyt im :
Trn thc t cho n nm 1998 th cha c cch thm m no c th gii m
c RC5. Tuy nhin mt vi nghin cu l thuyt cung cp mt vi cch thm
m c th thc thi. H da vo c im l s lng vng lp trong RC5 th
khng ph thuc vo tt c cc bit trong mt khi. Bn cnh RC5 c thit k
rt n gin do c ch m ha ch da vo cc php ton cng, exclusive-or v
quay.
3.4.4. C ch m ha RC6
A.
Gii thiu
RC6 l mt ci tin ca RC5, c thit k gii quyt cc yu cu v mt
chun m ha cao cp AES (Advanced Encryption Standard). Ging nh RC5,

RC6 s dng nhng vng lp. c im mi ca RC6 l chng m ha mt ln 4
khi w bit thay v 2 khi ca RC5, v s dng cc php tnh tch cc s nguyn
nh php ton cng cc nguyn t...
B.
Thut ton
B.1.
nh ngha cc gi tr
RC6 c xc nh nh RC6-w/b/r trong :
37

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
w : kch thc khi cn c m ha (gi tr chun l 32 bit, ngoi ra ta c

th chn 16 hay 64 bit).
r : s vng lp (gi tr t 0,1,...,255)
b : chiu di kha theo byte (0 n 255)
Cc gi tr thng dng l : w = 32, r = 20, cn chiu di kha c th 16,
24, hay 32 byte.
i vi tt c cc bin, cc thao tc RC6-w-r-b trn khi w-bit s dng cc
ton t c bn sau:
a + b : php cng module 2w
a - b : php tr module 2 w
a xor b : php ton xor
a x b : php nhn module 2w
a <<< b : php ton quay tri a sang tri t nht log2w bit ca b
a >>> b : php ton quay phi a sang phi t nht log2w bit ca b
B.2.
M rng kha
Tng t nh RC5, RC6 cng s dng c ch m rng kha m bo an
ton v tng thm s phc tp. Tuy nhin trong thut ton RC6 th kha K ca
ngi s dng c m rng thnh mt tp hp gm 2(r + 2) v lu vo bng S.
Do vy, S l mt mng ca t = 2(r + 2) cc s ngu nhin nh phn c quyt
nh bi kha K. N s dng hai hng s l tng c nh ngha :
Pw = Odd ((e -2)2w)
Qw = Odd ((0/ - 1)2w)
Trong :
e = 2.178281828459... (da trn s logarithms t nhin)
0/ = 1.618033988749... (t l vng
Odd (x) l s nguyn l gn x nht
38

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Mt s gi tr khc :
t = 2(r + 2) : s phn t ca bng kha m rng S.
u = w/8 : u l s lng cc byte ca khi w
c = b/u
Qu trnh m rng kha bao gm cc bc sau:
Bc 1 :
- Chp kha b mt K[0,...,b-1] vo mng L[0,...,c-1].
- Thao tc ny s dng u byte lin tc nhau ca kha K in vo cho L, theo
th t t byte thp n byte cao. Cc byte cn li trong L c in vo gi tr
0.
- Trong trng hp b = c = 0, chng ta s t c v 1 v L[0] v 0.
Bc 2 :
- Khi to mng S vi mt ton t ngu nhin c bit, bng cch dng mt
php tnh s hc module 2w c quyt nh bi hng s l tng P W v Qw.
S[0] = Pw
S[i] = S[i-1] + Qw
Bc 3 :
-
Trn kha b mt ca ngi s dng vo mng L v S.

A=B=0
i=j=0
v = 3 * max{c, 2r + 4}
For s = 1 to v do {
A = S[i] = (S[i] + A + B) <<<3
B = L[j] = (L[j] + A + B) <<< (A + B)
i = (i + 1) mod (t)
39

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
j = (j + 1) mod (c)
}
-
Lu rng hm m rng kha l mt chiu do vy khng d dng
tm ra kha K t S.
Thut ton m rng :
Input : kha b c np v mng c phn t L[0,...,c-1]
S vng quay r
Output : mng kha S[0,...,2r + 3]
S[0] = Pw
For i = 1 to 2r + 3 do
S[i] = S[i - 1] + Qw
A=B=0
i=j=0
v = 3 * max {c, t}
For s = 1 to v do {
A = S[i] = (S[i] + A + B) <<< 3
B = L[j] = (L[j] + A + B) <<< (A + B)
i = (i + 1) mod (t)
j = (j + 1) mod (c)
}
Thut ton m ha:

Input : gi tr gc c lu tr trong bn khi w-bit A, B,C, D
S vng lp r
w-bit kha vng lp S[0,...,2*r + 3]
40

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Output : gi tr m c lu trong bn khi w-bit A', B', C', D'

Thut ton :
B = B + S[0]
D = D + S[1]
For i = 1 to r do {
t = (B x (2B + 1)) <<< lgw
u = (D x (2D +1)) <<< lgw
A = ((A XOR t) <<< u) + S[2i]
C = ((C XOR u) <<< t) + S[2i + 1]
(A, B, C, D) = (B, C, D, A)
}
A = A + S[2r +2]
C = C + S[2r + 3]
(A', B', C', D') = (A, B, C, D)
Thut ton gii m :
Qu trnh gii m chnh l qu trnh i ngc li qu trnh m ha
c c ci gi tr gc.
Thut ton gii m nh sau :
Input : gi tr m c lu tr trong bn khi w-bit A', B', C', D'
S vng lp r
w-bit kha vng lp S[0,...,2r + 3]
Output : gi tr gii m c lu trong bn khi w-bit A, B, C, D
C' = C' - S[2r + 3]
A' = A' - S[2r + 2]
For i = r to 1 do {
41

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
(A', B', C', D') = (D', A', B', C')

u = (D' x (2D' + 1)) <<< lgw
t = (B' x (2B' +1)) <<< lgw
C' = ((C' - S[2i + 1]) >>> t) XOR u
A' = ((A' - S[2i] >>> u) XOR t
(A, B, C, D) = (B, C, D, A)
}
D' = D' - S[1]
B' = B' - S[0]
(A, B, C, D) = (A', B', C', D')
B.3.
Mt s Phin bn
B.3.1 RC6-I-NFR
Phin bn ny th hm f(x) = x(2x + 1) c thay th bng hm f(x) = x v
khng s dng vic quay cc gi tr (Fixed Rotation FR) lgw bit.
Input : gi tr gc c lu tr trong bn khi w-bit A, B, C, D.
S vng lp r.
w-bit kha vng lp S[0,...2*r + 3]
Output : gi tr m c lu trong 2 khi w-bit A', B', C', D'.
Thut ton :
B = B + S[0]
D = D + S[1]
For i = 1 to r do {
t=B
u=D
A = ((A XOR t) <<< u) + S[2i]
42

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
C = ((C 0/ u) <<< t) + S[2i + 1]

(A, B, C, D) = (B, C, D, A)
}
A = A + S[2r + 2]
C = C + S[2r + 3]
(A', B', C', D') = (A, B, C, D)
B.3.2. RC6-NFR
Phin bn RC6-NFR khng s dng vng quay.
B = B + S[0]
D = D + S[1]
For i = 1 to r do {
t = (B x (2B + 1))
u = (D x (2D + 1))
A = ((A 0/ t) <<< u) + S[2i])
C = ((C 0/ u) <<< t) + S[2i + 1])
(A, B, C, D) = (B,C, D, A)
}
A = A + S[2r + 2]
C = C + S[2r + 3]
(A', B', C', D') = (A, B, C, D)
B.3.3. RC6-I
Phin bn RC6-I th hm f(x) = x(2x + 1) c thay th bng hm s f(x) = x
B = B + S[0]
D = D + S[1]
For i = 1 to r do {
43

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
t = B <<< lgw
u = D <<< lgw
A = ((A 0/ t) <<< u) + S[2i])
C = ((C 0/ u) <<< t) + S[2i + 1])
(A, B, C, D) = (B,C, D, A)
}
A = A + S[2r + 2]
C = C + S[2r + 3]
(A', B', C', D') = (A, B, C, D)
B.4.
nh gi
Thm m RC6 :
+Bng di y tng kt chi ph cho vic thm m RC6 theo cch tip cn vi
phn v tuyn tnh. y tnh trn RC6 s dng 20 vng lp.
+Nu dng cch vt cn kha K vi b-byte vi mt bng kha m rng
S[0,...43] th cn min{28b, 21048} thao tc. Do vy, vi kch thc kha c
xc nh trong AES th vic gii m bng cch vt cn th dng nh khng
th thc thi.
K thut thm m
Vi phn
Tuyn tnh
S vng lp
8
12
56
2
2117
247
283
16
2190
2119
20
2238
2155
24
2299
2191
So snh an ton cc phin bn ca RC6 :

Bng sau m t chi ph cho thut ton thm m vi phn :
Phin bn
12RC6=I=NFR
RC6-I
8
222
223
44
S vng lp
12
16
20
32
45
2
2
266
234
247
269
24
276
280

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
228
256
RC6-NFR
RC6
247
2117
261
2190
284
2238
2103
2299
u im :
Do RC6 c pht trin t RC5 nn s c tt c nhng u im ca RC5.
Bn cnh , RC6 cn c mt s c tnh sau :
+RC6 tng thm s phc tp ca qu trnh m ha v gii m bng cch s
dng cc php ton : cng, tr, nhn, exclusive-or, quay tri v quay phi.
+Mt s c im ni bt khc ca RC6 so vi RC5 l thao tc quay s dng
cht ch cc d liu ph thuc v c thao tc trn tt c cc bit.
+Tng thm an ton ca thut ton bng cch tng s phn t trong bng
kha m rng l 2(r + 2) thay v 2(r + 1) i vi RC5 (vi r l s vng lp).
+Mi qu trnh m ha v gii m ca RC6 c thc hin trn 4 khi w bit.
Do vy, RC6 c th tng tc m ha ng thi cng tng thm s phc tp.
+Vi nhng u im trn, RC6 c chn vo danh sch mt trong nm ng
c vin lt vo vng chung kt ca chun m ha d liu cao cp AES (Advanced
Encryption Standard).
3.4.5. C ch m ha AES
Thut ton m ha khi Rijndael c thit k s dng cho cc thao tc
n gin trn ton byte. Bn cnh , thut ton cng cung cp tnh uyn chuyn
c yu cu cho cc ng c vin AES - l c kch thc kha ln kch thc
khi cn m ha c th c chn bt k cc gi tr 128, 192 hoc 256 bit.
m ha khi d liu bng Rijndael, trc tin thi hnh thao tc Add
Round Key (thao tc XOR mt kha con vi khi d liu). Tip theo, thc hin
mt s vng lp chnh. S vng lp chnh trong Rijndael nh sau :
+9 nu c khi cn m ha v kha c cng chiu di l 128 bits.
45

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
+11 nu hoc khi d liu hay kha l 192 bits, v khng ci no c kch
thc ln hn 192 bits.
+13 nu hoc khi d liu hay kha c chiu di 256 bits.
Vng lp chnh bao gm cc bc :
-ByteSub (Substitution Byte) : mi byte ca khi c thay th bng mt
gi tr khi qua mt S-box.
-ShiftRow (Shift Rows) : y l qu trnh chuyn i cc dng.
-MixColumn (Multiply columns) : thi hnh qu trnh nhn ma trn, khi ny
mi ct c nhn vi ma trn M4x4.
- AddRoundKey (Xored by key): qu trnh ny ch n gin XOR kha con
cho kt qu ca vng hin hnh.
Vng cui cng ch thi hnh vic chuyn i :
ByteSub
ShiftRow
AddRoundKey
Ton b qu trnh m ha ca AES c th c minh ha nh sau :
46

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 3.7: S m ha v gii m vi AES

3.5.
C ch m ha kha cng khai
3.5.1. C ch m ha RSA
A.
M t
Thut ton m ho RSA do ba nh ton hc Ron Rivest, Adi Shamir v Len
Adleman ti i hc MIT cng thc hin vo nm 1977 v c cng b vo nm

1978. Thut ton c t tn l RSA (Rivest Shamir Adleman) c thit k
theo h thng m cng khai.
S khc bit gia mt h thng m b mt vi mt h thng m cng khai l
h thng m cng khai dng hai kha khc nhau m ha v gii m. Do ,
mt b m cng khai s bao gm hai kha: mt kha ginh cho ngi m ha,
thng c cng khai v kha cn li dng cho ngi gii m, thng c gi
b mt. Mc d, hai kha thc hin cc thao tc ngc nhau v c lin quan vi
nhau, nhng phi lm sao khng th suy ra kha b mt t kha cng khai.
47

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
thc hin c trn Rivest, Shamir v Adleman ra mt

phng php da trn nhn xt: c th d dng sinh ra hai nguyn t ln v nhn
chng li vi nhau nhng rt kh khn khi mun phn tch tha s cho tch ca
chng.
Cc bc thc hin gii thut RSA nh sau:
Hnh 3.8: S m ha v gii m vi RSA

Vn ct yu ca gii thut RSA l hai s nguyn t p v q, hai s ny cn
phi c gi b mt tuyt i. Mt khc, c th tnh c kha b mt D nu
phn tch c n thnh hai s nguyn t p v q. Song, iu l khng kh thi v
nu dng thut ton phn tch tha s nhanh nht ca Schroeppel th cng phi
48

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
cn n S bc tnh ton phn tch n thnh p v q, vi S c tnh: S = exp[(ln

n) ln(ln n)]1/2.
B.
nh ngha cc gi tr
Pht sinh kho :

- Chn p, q l 2 s nguyn t
- Tnh N : N = p * q
- Tinh phi(n): phi(n) = (p -1) (q - 1)
- Chn e: USCLN[E,phi(n)] = 1
- Tnh d: d = E-1mod phi(n)
- Kha public: KU = {e,N}
- Kha private: KR = {d,N}
M ho:
Bn tin gc: P
Bn m: C = Pe (mod n)
Gii m:
Bn tin m: C
Bn tin gii m: P = Cd (mod n)
Mc d cc h thng m cng khai khc phc c nhc im phn phi
kha phi c gi mt cch an ton. Tuy nhin, khi cng khai cc kha dng
m ha li ny sinh vn mt ngi no gi danh s dng m ha cc
thng bo gi n bn nhn lm h khng th phn bit c thng bo l hp
l hay khng. C mt s phng php gii quyt vn ny m in hnh l c
ch ch k s.
3.5.2. Nghi thc trao i kha Diffie-Hellman
Nghi thc Diffie-Hellman khng cung cp c ch m ha vi kha cng
khai. Mc tiu ca nghi thc ny l khi to v trao i kha an ton gia hai
49

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
thnh phn qua mt knh khng an ton m c th s dng vi c ch m ha quy

c. Nghi thc ny cn c th gi l nghi thc trao i kha.
Tuy nhin, khng c gi tr thc s c trao i bi v kha c khi to
mt cch ngu nhin.
Cc tham s (p,q) (lu : cc tnh ton bfn di u c module cho p)
p l mt s t ln (v d khong 512 bit).
g Zp-1 l mt khi to ca Z*p
1.
A chn mt s nguyn ngu nhin x, tnh X = g x v gi X
2.
B chn mt s nguyn ngu nhin y, tnh Y = gy v gi Y
3.
A tnh K = Yx trong khi B tnh K =Xy
cho B
cho A
50

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
R rng nu A v B lm ng theo nghi thc trn, cui cng h s tnh ra

cng kha K vi K = gxy. Nghi thc ny cng m bo tnh b mt ca kha K.
Bi v cho bit X v Y rt kh tm tnh c K = Xloggy
PHN 4
HM BM V CH K S
4.1.
Khi qut
Chng thc l th tc kim tra thng tin nhn c xut pht t ng ngun
gi v khng b thay i ni dung. Ngoi ra trong nhiu trng hp, cn kim

chng c thi gian truyn thng tin. Ch k s l phng php kim chng bao
gm c vic chng li s mo danh hay ph nhn ca c bn gi ln bn nhn.
4.2.
Hm bm
4.2.1. MD5(Message Digest 5)

A.
Khi nim
MD5 (Message Digest) c pht trin bi gio s Rinaldl Rivest, ng
nghin cu kh cn thn khm ph s tht v tm ra mt thng tin mi v vic

m ha v ng xut MD5 vo nm 1991. MD5 nhn vo mt mt thng ip
vi chiu di ty v sn sinh ra mt du tay hoc hay d liu c nn li c
chiu di 128 bit (MD). Thut ton ny khng c kh thi, khi hai thng ip c
cng thng ip rt gn th khng tm ra c hai thng ip ban u.
MD5 c p dng cho hu ht cc ng dng ch k in t vi mt file
qu ln phi c nn li an ton trc khi m ha bng private key. Trong vic
m ha cng khai nh RSA, MD5 c thit k chy kh nhanh trn cc my 32
bit v khng yu cu thay th (S-box) ln no. MD5 l mt phin bn m rng t
51

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
MD4, MD5 chy chm hn MD4 v mt tc nhng c thit k cn thn hn

v c tnh bo mt hn MD4. MD5 thc s c hon ton chnh xc khng ? y l
mt cu hi v c tr li t nhng nh vit code, h xem xt v kim tra li
thut ton v khng nh tnh an ton v MD5. Tuy nhin, MD5 khng c kim
tra thng xuyn v cho n nm 2004 ngi ta khng nh s suy yu ca
MD5.
B.
M t thut ton
Gi s rng, c mt thng ip l (b bit) v chng ta ao c l tm c mt
gi tr bm (hay nn). y, b bit l s ty nhng khng l s m, c th l s 0

v khng cn thit l bi s ca 8, l s ln ty . Chng ta hnh dung rng cc bit
thng ip c vit li nh sau: m0, m1, m(b-1) .
Theo sau y l 5 bc ca qu trnh bm 1 thng ip :
Bc 1 :
Thm cc bit m (Append Padding Bit)
Thng ip c m rng vi chiu di l gi tr khi ly 448 mod 512. iu
ny, thng ip c m rng l 64 bit. Bc ny lun c th hin d l chiu
di c l gi tr ca 448 mod 512 hay khng. Trong tt c cc gi tr, t nht l mt
bit v nhiu nht l 512 bit c thm vo. Vic thm vo c tin hnh nh
sau : u tin 1 bit c thm vo thng ip v k l cc bit 0 chiu di sau
cng ca thng ip l 448 mod 512.
Bc 2 :
Thm vo chiu di
b l chiu di ca thng ip trc khi thm vo cc bit c lu tr trong
64 bit v khng th ln hn 264 bit. Vi 64 lu tr, b c chia lm 2 t 32 bit
52

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
c thm vo thng ip theo mt trnh t t thp vo trc, mt thng ip sau

khi qua bc 1 v thm b vo s c chiu di chnh xc l bi s ca 512 bit.
Tng ng thng ip ny l bi s ca 16 t 32 bit. M[0,N-1] k hiu cho
cc t ca thng ip vi N l bi s ca 16 t.
Bc 3 :
Khi to cng m MD
Vi mt vng m gm 4 t (A, B, C, D) c s dng tnh gi tr bm
MD. Mi t A, B, C, D l 4 thanh ghi 32 bit, cc thanh ghi ny c khi to bi
cc gi tr sau theo h s thp lc phn, cc byte th t thp trc ln sau.
MD5 Message-Digest Algorithm
April 1992
word A: 01 23 45 67
word B: 89 ab cd ef
word C: fe dc ba 98
word D: 76 54 32 10
Bc 4 :
X l thng ip theo khi 16 t
u tin, chng ta cn nh ngha 4 hm h tr m gi tr vo l 3 t 32 bit
v sinh ra kt qu l t 32 bit F(X, Y, Z)
F(X,Y,Z) = XY v not(X) Z
G(X,Y,Z) = XZ v Y not(Z)
H(X,Y,Z) = X xor Y xor Z
I(X,Y,Z) = Y xor (X v not(Z))
Trong mi bit v tr F c thc thi nh iu kin u tin nu X k l Y
v sau l Z. Mt hm F c th c nh ngha vic dng + thay th cho v khi XY
53

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
v not(X)Z v s khng bao gi c 1 s. N c quan tm v ch hn nu bit

ca X,Y,Z l c lp v khng tun theo ai, mi bit ca F(X, Y, Z) s mang tnh
c lp v khng tun theo g c. Cn hm G, H, I cng nh hm F. Khi thc thi
nhiu bit song song s sn sinh ra gi tr t bit ca X, Y v Z. Trong cng mt
cch thc nu nh bit X v Z th c lp v khng ph thuc. Khi , mi bit ca
G(X, Y, Z), H(X, Y, Z) v Y(X, Y, Z) s c lp v khng ph thuc, ch rng
H l bit .. xor hay party hm ca gi tr vo.
Bc ny s dng bng gm 64 phn t T[0, ., 63] c khi to t hm sin,
T[i] k hiu cho phn t th I ca bng v bng abs-------------------- y i l
hng s radian.
/* Process each 16-word block. */
For i = 0 to N/16-1 do
/* Copy block i into X. */
For j = 0 to 15 do
Set X[j] to M[i*16+j].
end /* of loop on j */
/* Save A as AA, B as BB, C as CC, and D as DD. */
AA = A
BB = B
Bc 5 :
Gi tr bm (kt qu)
Gi tr bm c lu trong 4 thanh ghi A, B, C, D. Ngha l chng ta bt u vi
byte thp nht ca A v kt thc vi byte cao nht ca D. S hon tt ny m t
c MD5.
54

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
B. Khuyt im thut ton

Vo nm 1993, Bert DenBoer v Antoon Bosseloers tm ra pseudi collison cho MD5
m c lm t 2 thng ip ging nhau vi 2 tp hp khc nhau ca gi tr ban u. Hdobler
Tina t s bt u khng c xung t vi s la chn gi tr ban u l IV
Vic tn cng ca chng ta c th tm ra nhiu s va chm thc t m bao gm c hai
thng ip 1024 bit vi gi tr gc ban u IV ca MD5 .
4.2.2. SHA
A.
Khi nim
SHA l phn c s dng cho DSA nh mt phn quan trng trong DSS v
bt c khi no SHA l phn ng dng cho mt t chc. Cho mt thng ip c

chiu di 2^64 bit th SHA sn sinh ra mt thng ip mi vi chiu di 160 bit
c gi l MD. MD l phn dng chung ca mt ch k cho mt thng ip.
SHA c thit k c thuc tnh theo sau:
SHA l s tnh ton khng tim ra c thng ip m ng vi MD cho, hoc
tim ra hai thng ip khc nhau m sn sinh mt MD ging nhau.
B.
M t thut ton
1. nh ngha chui bit v hng s :

Theo sau l nhng k hiu quan h biu din chui s s c s dng
Mt s c c s 16 bit l phn t ca tp hp
(0, 1, . 9, A, ., F)
Mt s c c s th c biu din vi 4 bit
V d : 7 = 0111, A = 1010
Mt t nh l 32 bt c th din t mt cch trnh t ca 8 c s 16 : theo nh chuyn
i mt t t 8 c s 16 trong mi chui 4 bit th s chuyn i ny l mt s c c s
13 c m t nh trn . v d :
1010 0001 0000 0011 1111 1110 0010 0011 = FE23
55

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Mt s nm gia 0 v 2 32 1 bao gm vic biu din nh mt t t nht 4 bit ca s

nguyn th c biu din. V d :
291 = 28 + 25 + 21 + 20 = 256 + 32 + 2 + 1
V c biu din theo s c c s l 00000123 .
Mt khi (block) th bng chui 512 bit . v 1 lock (e, g , B) c biu din theo
trnh t 16 bit .
2. Thao tc trn t :
Theo sau l nhng thao tc c p dng trn t
Bit wise logical word operations :
X AND Y = bitwise logical "and" of X and Y.
X OR Y = bitwise logical "inclusive-or" of X and Y.
X XOR Y = bitwise logical "exclusive-or" of X and Y.
NOT X = bitwise logical "complement" of X.
Example:
01101100101110011101001001111011
XOR 01100101110000010110100110110111
-------------------------------= 00001001011110001011101111001100
Thao tc X + Y c dnh ngha nh sau :
56

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
T X v Y c biu din s nguyn x v y. y, 0 <= x < 2 32 v 0 <= y < 232. Cho

s thc n v m ly n mod m phn cn d c chia ra n bi m Z = (x + y) mod 232.
Phn bn tri dch chuyn n bi sn (X). Ti y, X l t v n l s nguyn vi 0 <= n <
32 c nh ngha :
Sn (X) = ( X << n ) or ( X >> 32 n ).
3. Thng ip m ( Message Padding ) :
SHA1 c s dng bm nhng thng ip hay file d liu nhn vo. Thng
ip hay file d liu phi cn trng trc khi a v bit string. Chiu di ca mt thng
ip l s bit trong mt thng ip, nu thng ip rng th chiu di l 0. Nu s bit
trong thng ip l bi s ca 8 th chng ta c th biu din thng ip trong c s 16
(hex). Kt qu ca thng ip m l tng chiu di ca thng ip m bi s 512.
SHA-1 lin tc x l cc khi 512 bit tnh thng ip rt gn. Nhn chung, a 1
theo sau bi m 0 theo sau bi 64 bit s nguyn th thm vo phn cui ca thng ip
m c chiu di l 512 n 64 bit s nguyn l chiu di ca thng ip gc. Thng
ip m khi ny l s tnh ton ca SHA-1 nh n 512 bit khi.
a. 1 c thm vo :
V d :
Message l 01010000 Padded 010100001
b. 0 l s thm vo :
Thng ip gc l :
001100001 01100010 01100011 01100100 01100101
Sau bc a :
01100001 01100010 01100011 01100100 011001011
Khi 1 l 40 , s ca bit bn trn l 41 v 407 0 l s m by gi tng ca chng l
448 .
61626364 65800000 00000000 00000000
57

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
00000000 00000000 00000000 00000000

00000000 00000000 00000000 00000000
00000000 00000000.
Cha ng t biu din theo 1 s ca bit trong thng ip gc. Nu 1 < 2 32 khi u
tin t l tt c u l 0, m vo 2 t cho thng ip m
V d :
Suppose the original message is as in (b). Then l = 40
(note that l is computed before any padding). The two-word
representation of 40 is hex 00000000 00000028. Hence the final
padded message is hex
61626364 65800000 00000000 00000000
00000000 00000000 00000000 00000000
00000000 00000000 00000000 00000000
00000000 00000000 00000000 00000028.
The padded message will contain 16 * n words for some n > 0.
The padded message is regarded as a sequence of n blocks M(1),
M(2), first characters (or bits) of the message.
4. Hm v hng s s dng :
Trnh t c php ca hm bm l f (0) f (79) l c s dng trong SHA-1. Mi
hm f (t) , vi 0 <= t <=79. Hot ng trn cc t 32 bit B, C, D c nh ngha nh
sau :
Cho t B , C , D
58

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
(t;B,C,D) = (B AND C) OR ((NOT B) AND D)

f(t;B,C,D) = B XOR C XOR D
( 0 <= t <= 19)
(20 <= t <= 39)
f(t;B,C,D) = (B AND C) OR (B AND D) OR (C AND D) (40 <= t <= 59)

f(t;B,C,D) = B XOR C XOR D
(60 <= t <= 79).
5. Tnh gi tr hm bm :
Phng thc cho bn di y s sinh ra gi tr bm. Mc d thut ton th 2
lu tr 64 t 32 bit, c th ko di thi gian hot ng do vic tng tnh phc tp ti
ni xc nh trong vic tnh ton cho -------- trong bc (c). Ngoi ra, cn nhng
phng php tnh ton khc cng cho ra kt qu ging nhau.
5.1 Phng php 1 : Thm bit vo thng ip.
Vic bm l qu trnh tnh ton c s dng thng ip m m t phn
trn.
Vic tnh ton dng 2 vng m, mi vng m cha 5 t 32 bit v mt chui
80 t 32 bit. Cc t ca vng m 5 t u k hiu l A , B , C , D , E. Cc t ca vng
m trong 5 t th 2 k hiu H0, H1, H2, H3, H4. Cc t ca chui 80 t u k hiu
l W (0), W (1), W (2), W (79). Mt vng m TEMP cha duy nht t c dng.
to ra thng ip rt gn, cc khi 16 t (M1 , M2) .. M(n) c x l theo
th t. Vic x l mi M (i) bao gm 80 bc. Trc khi x l bt k khi no. H i
c khi ng theo h thp lc phn nh sau:
59

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
US Secure Hash Algorithm 1 (SHA1)
September 2001
Before processing any blocks, the H's are initialized as follows: in

hex,
H0 = 67452301
H1 = EFCDAB89
H2 = 98BADCFE
H3 = 10325476
H4 = C3D2E1F0.
Now M(1), M(2), ... , M(n) are processed. To process M(i), we
proceed as follows:
a. Divide M(i) into 16 words W(0), W(1), ... , W(15), where W(0)
is the left-most word.
b. For t = 16 to 79 let
W(t) = S^1(W(t-3) XOR W(t-8) XOR W(t-14) XOR W(t-16)).
c. Let A = H0, B = H1, C = H2, D = H3, E = H4.
d. For t = 0 to 79 do
TEMP = S^5(A) + f(t;B,C,D) + E + W(t) + K(t);
E = D; D = C; C = S^30(B); B = A; A = TEMP;
e. Let H0 = H0 + A, H1 = H1 + B, H2 = H2 + C, H3 = H3 + D, H4 = H4
+ E.
After processing M(n), the message digest is the 160-bit string
represented by the 5 words
H0 H1 H2 H3 H4.
5.2 Phng php :
Phng php trn gi s chui W (0) , . , W (79) c lu nh mt mng 80 t 32
bit. iu ny, c hiu qu theo quan im ti u thi gian thc thi bi v cc v tr xc
60

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
nh ca W (t - 3) W (t - 16) bc b d dng tnh c. Nu khng gian lu tr

c ch trng th W (t) c biu din nh mt hng i xoay vng. Hng i ny bao
gm mt --------- 160 t 32 bit W (0) . W (15). Trong trng hp ny theo h thp lc
phn ta t MASK = 0000000F Khi vic x l W (i) nh sau :
a. Divide M(i) into 16 words W[0], ... , W[15], where W[0] is the
left-most word.
b. Let
A = H0,
B = H1,
C = H2,
D = H3,
E = H4.
c. For t = 0 to 79 do
s = t AND MASK;
if (t >= 16) W[s] = S^1(W[(s + 13) AND MASK] XOR W[(s + 8) AND
MASK] XOR W[(s + 2) AND MASK] XOR W[s]);
TEMP = S^5(A) + f(t;B,C,D) + E + W[s] + K(t);
E = D; D = C; C = S^30(B); B = A; A = TEMP;
d. Let
H0 = H0 + A,
H1 = H1 + B,
H2 = H2 + C,
H3 = H3 + D,
H4 = H4 +
E.
Sample Message v Message Digest :
61

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
This appendix is for informational purposes only and is not required to meet the
standard.
Let the message be the ASCII binary-coded form of "abc", i.e.,
01100001 01100010 01100011.
This message has length l = 24. In step (a) of Section 4, we append "1". In step (b) we
append 423 "0"s. In step (c) we append hex 00000000 00000018, the 2-word
representation of 24. Thus the final padded message consists of one block, so that n = 1
in the notation of Section 4.
C.
Khuyt im
Trong nm 2005 gio s XiaoyonWang cng b hm bm SHA-1 b tn cng,
vi nhng ci tin gn y, chnh bi s tn cng ny m khng t ngi ang trong i

nhng ci tin mi hn nhm khc phc s tn cng . Theo c tnh c khong 263
qu trnh hot ng b tn cng, nhng ng hn l 280 qu trnh hot ng ca SHA1 hay l 160 bit cho gi tr bm. iu ny l s qu ln cho qu trnh tnh ton v khng
mt ai chng ta hiu bit c v iu ny. Cho n khi thut ton ca gio s Wangs
tm ra c l hng ca SHA-1 nhng vi con s 263 l con s xc thc cho nhng
ngi tn cng. NIST chp nhn kin ca gio s tm ra im chnh yu ca
SHA-1 cho nhng k tn cng nhm vo . NIST c nhng cuc tha lun khn
cp vo ngy 31-08-2005 v chp nhn kin ca gio s Wangs v s tn cng ny,
vic tn cng ny nhm vo nhng ng dng trn ch k s bao gm c chng nhn v
du n.
Mt thng ip trong ch t chc th hai k nhn v t chc th ba xc nhn,
nhng ng dng ca vic lm ny mun c mt phng n tt nhm khc phc s cng
kch ny.
Chung quy l by gi chng ta hy cn thn l iu u tin, chng ta nn chuyn
tip nhanh sang cng ngh mi hn nhm khc phc s tn cng ny. Nhng ngi tn
cng SHA-1 th chung quy h cng ch s dng nhng k thut chung nhng mnh hn
62

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
SHA-1, hay ni cch khc i l SHA-2, v thc t SHA-2 l cha c v c th n s

c trong tng lai.
4.3.
Ch k s
4.3.1. Gii thiu

K thut ch k s hay ch k in t l k thut s dng k thut s
m phng ch k bng tay. K thut s c dng xc nh ngi to ra v
chu trch nhim vi thng tin m ngi k vo. K thut ch k s gm 2
phn : thut ton k tn v thut ton xc nhn v kim tra ch k. Theo k thut
ny th ch c ngi to ra thng ip mi c th k tn v tt c mi ngi u c
th kim chng ch k. M hnh ch k s cng ging nh m hnh m ha cng
khai. Do vy, thut ton RSA c th c p dng xy dng ch k s. Hin
nay, c 3 thut ton ch k s thng dng l ch k RSA, ch k Elgamal v ch
k DSS (Digital Signature Standard).
4.3.2. Yu cu ch k s
Cc yu cu ch k s (ch k in t) cn :
- Ch k phi da vo thng ip k.
- Ch k phi cha vi thng tin quan trng duy nht i vi ngi gi
ngn chn s gi mo.
- D dng to ra ch k in t.
- D dng nhn din v xc nhn ch k in t.
- Khng d dng gi mo mt ch k in t.
c th to ra v s dng ch k s ta cn phi s dng mt hm bm
rt gn mt thng ip c chiu di bt k thnh mt gi tr. Ga tr ny c th
c s dng kim tra s ton vn ca thng tin.
63

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
4.3.3. c im ch k s
+
Tnh xc nhn: mt ch k in t m bo rng chnh ngi k l
ngi to ra n.
+
Tnh an ton: khng th lm gi ch k nu nh khng bit thng tin
b mt to ch k.
+
Khng th dng li: mt ch k in t khng th dng cho mt ti
liu khc
+
Khng th ph nhn: mt khi ngi k khng th ph nhn ch k .
Tnh hiu qu: k v xc nhn nhanh chng d dng.
4.3.4. Khuyt im ca ch k s
Khi cng nhn mt ch k s, mt li khuyn cho bn vi vi s tn ti ca
publickey. Nhng bn s hiu nh th no nu publickey l khng ng?
Nu bn khng cho lp tc mt publickey vo trong bo mt th bn khng
chc chn puplickey l ng. Chng thc s s c gng(Digital certificates)
gii quyt nhng vn ny, vic ng nht mt publickey vo trong l cch
khng th gii c, chng ta s s dng certificates vo ng nht bin.
64

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
PHN 5
KT QU V THO LUN
5.1.1. M hnh ng dng
Hnh 5.1: M hnh tng th h thng
65

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh5.2: Thao tc t chc th ba
66

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh5.3: Thao tc ca nh cung cp
67

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.4: Thao tc ca khch hng
68

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.5: S thao tc ca t chc th ba
Hnh 5.6: S thao tc ca khch hng
69

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.7: S thao tc ca nh cung cp
5.1.2. S lp:
Item
String name
String code
double price
Provider
String name
String pass
String model
Bank bank
List items
1..*
1..*
*
Customer
String name
String pass
String idCard
Bank bank
1
Order
String codeOfOrder
String nameOfCus
String nameOfPro
String dateOfOrder
String dateOfDelivery
String addressForward
List items
Bank
String nameOfBank
String accountCode
String pincode
70

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
5.2. Cc bc s dng chng trnh ng dng:
Hnh 5.2.1: Trang chnh
71

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.2: Khch hng ng nhp
72

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.3: Danh sch cc cng ty
73

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.4: Danh sch mt hng
74

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.5: Ha n
75

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.6: Ha n t hng
76

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.7: Thng bo giao dch thnh

cng
77

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.8 To mi ti khon khch hng
78

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.9: Nh cung cp ng nhp
79

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.10: Trang nh cung cp
80

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.11: Xa mt hng
81

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.12: Sa mt hng
82

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.13: Thm mt hng
83

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.14: ng k cho nh cung cp
84

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.15: Nh qun tr
85

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.16: Qun l khch hng
86

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.17: Qun l nh cung cp
87

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.18: Qun l ti khon
88

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.19: Qun l ha n
89

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hnh 5.2.20: To ti khon cho nh qun

tr
PHN 6
90

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
KT LUN
6.1. Vn t c v cha t c trong lun vn
6.1.1. Vn t c
Thc hin c giao dch mua bn c bn qua mng.
Bo mt c tt c thng tin giao dch.
Trnh ph nhn, bc b thng qua m hnh ch k in t.
6.1.2. Vn cha t c
Cha gii quyt c server cho tng nh cung cp.
H thng s tt nghn khi c nhiu giao dich xy ra ng thi.
Giao din cha mang tnh phc v thng mi.
Cha cp nht d liu t file son tho trc.
6.2. Nhng kh khn trong qu trnh lm lun vn
ng nht m hnh ng dng cho lun vn nn c nhng vic tranh
lun gy gt trong nhm. Nhng kh khn v c s d liu khng c ng b,
cch hiu v m hnh ng dng kh a ra c s lp.
6.3. Hng pht trin
V vic ch k s xut hin nhiu khuyt im, trong khi hai hm bm
c dng nhiu nht to ch k s cng b tn cng. V l ng dng ch
k s vo trong TMT l vn ang cn quan tm ch nhiu hn. Hin nay
SHA-2 ra i v so vi SHA-1 th SHA-2 l phin bn mi ci thin cho SHA1 nhng thc cht ngi ta cha dng n SHA-2 v cha tin vo tnh nng bo
mt ca SHA-2. Chnh v vy cn a chng thc s vo trong ng dng giao
dich l iu cn thit v cp nht SHA-2 khi c mt t chc chuyn gia bo mt
khng nh tnh nng an ton bo mt ca SHA-2.
91

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Nn vit bng Web Application s phc v tt hn trong vn kinh doanh

thng mi. Tuy nhin vn bo mt phi c t ln hng u.
PHN 7
TI LIU THAM KHO
92

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
7.1. Ti liu ting Anh

Cases in Electronic Commerce:
Sid L. Huff,Michael Wade,Michael Parent,Scott Schneberger, Peter
Newson, Boston - McGraw-Hill, 2000
Electronic Commerce:
Security, Risk Management and Control, Greenstein Marilyn,Feinman
Todd M. Boston - McGraw-Hill,2000
Java Security:
JessGarms and Daniel Somerfield
Java_Security_2nd_Edition
O'Reilly & Associates, Inc.
Bussiness Intelligence in the Digital Ecomy:
Opportunite, Limitations and Risks Mahesh Raisinghani University of
Dallas, USA.
Crc Press-- Cryptography, Theory And Practice (1995)
Sybex.Complete.Java.2.Certification.Study.Guide.Apr.2005.ISBN0782144195
(Ebook Prog Java) OReilly - Java Cryptography 2
Hack.Proofing.Your.E.Commerce.Site
Ryan Russell, Teri Bidwell , Oliver Steudler, Robin Walshaw, L. Brent
Huston.
Core Java 2 Volume II - Advanced Features, Seventh Edition
By Cay S. Horstmann, Gary Cornell
Cryptanalysis of MD5 and SHA: Time for a New Standard
By Bruce Schneier
93

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Handbook of Applied Cryptography

By A. Menezes, P. van Oorschot, and S. Vanstone, CRC Press, 1996.
An introduction to Digital Signatures
By David Youd
Wireless Operational Security
By John Rittinghouse and James Ransome
7.2.
Ti liu ting Vit
Cc m hnh xc thc v ng dng trong thng mi in t:

Lun vn Ths Hunh Th H, 2005
Nghin cu ch k in t s dng bo v thng tin trn mng:
Lun vn Ths Nguyn Vn Hng, 2003
Nghin cu nghi thc thc hin ch k in t v ng dng trong m hnh
thng mi in t:
Lun vn Ths Trn Trng Tuyn, 2003
7.3.
Trang Web tham kho
http://csrc.nist.gov/publications/index.html
http://www.itl.nist.gov/fipspubs/index.htm
http://www.schneier.com/blog/archives/2005/02/sha1_broken.html
http://scottstuff.net/blog/
http://www.schneier.com/blog/archives/2005/02/rsa_conference.html
http://www.schneier.com/blog/archives/2005/02/security_risks.html
94

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
http://www.aspencrypt.com/index.html
95

CHỮ KÝ SỐ TRONG GIAO DỊCH MẠNG

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

CHỮ KÝ SỐ TRONG GIAO DỊCH MẠNG

Uploaded by

Copyright:

Available Formats

CH K S TRONG GIAO DCH MNG

CBHD: Th.s Nguyn Thnh Sn

SVTH : T, Hoi, Phc, Thanh

CH K S TRONG GIAO DCH MNG

th Vit Nam(VN) vn cn hn ch bi thi quen hay ra ch, n ca hng

CBHD: Th.s Nguyn Thnh Sn

SVTH : T, Hoi, Phc, Thanh

CH K S TRONG GIAO DCH MNG

Lun vn bao gm 6 chng:

CBHD: Th.s Nguyn Thnh Sn

SVTH : T, Hoi, Phc, Thanh

CH K S TRONG GIAO DCH MNG

Tnh hnh TMT

cch khc l cc ca hng o trn Internet. Ti cc nc pht trin c trnh

CBHD: Th.s Nguyn Thnh Sn

SVTH : T, Hoi, Phc, Thanh

CH K S TRONG GIAO DCH MNG

CBHD: Th.s Nguyn Thnh Sn

SVTH : T, Hoi, Phc, Thanh

CH K S TRONG GIAO DCH MNG

nhng th, cc ng dng khc ca Internet nh TMT to iu kin cho nhng

2.2.1. Khi qut

Loi hnh giao dch

CBHD: Th.s Nguyn Thnh Sn

SVTH : T, Hoi, Phc, Thanh

CH K S TRONG GIAO DCH MNG

Business-to-Business (B2B): TMT B2B l mt khi nim ch cc hot

CBHD: Th.s Nguyn Thnh Sn

SVTH : T, Hoi, Phc, Thanh

CH K S TRONG GIAO DCH MNG

kin my tnh, chi, qun o, c v nhiu th linh tinh khc. Ngay c cc

An ton khi giao dch qua mng

2.3.1. Cc ri ro khi giao dch

CBHD: Th.s Nguyn Thnh Sn

SVTH : T, Hoi, Phc, Thanh

CH K S TRONG GIAO DCH MNG

CBHD: Th.s Nguyn Thnh Sn

SVTH : T, Hoi, Phc, Thanh

CH K S TRONG GIAO DCH MNG

bn m ha username hoc password ly c v c nh th cho n khi c c

CBHD: Th.s Nguyn Thnh Sn

SVTH : T, Hoi, Phc, Thanh

CH K S TRONG GIAO DCH MNG

Tn cng lp li l kiu tn cng m k ph hoi s bt dy xc thc truyn

CBHD: Th.s Nguyn Thnh Sn

SVTH : T, Hoi, Phc, Thanh

CH K S TRONG GIAO DCH MNG

TMT s kh pht trin nu cc th trng in t khng th lin kt hot

CBHD: Th.s Nguyn Thnh Sn

SVTH : T, Hoi, Phc, Thanh

CH K S TRONG GIAO DCH MNG

ny em li kh nng lin kt hot ng gia cc ng dng TMT ca nhiu nh

T tr: Agent c th t kim sot hot ng ca n sau khi c giao

Giao tip: Agent c kh nng lin lc v trao i vi cc Agent khc.

i ng: Agent c kh nng nhn c cc thay i trong mi trng

Hng ch: cc Agent u c mt mc tiu v hnh ng c t

Vi cc c tnh k trn, phn mm Agent c pht trin trong cc h thng

CBHD: Th.s Nguyn Thnh Sn

SVTH : T, Hoi, Phc, Thanh

CH K S TRONG GIAO DCH MNG

gia ngi mua v ngi bn, gi cc sn phm ph hp vi s thch ca ngi

CBHD: Th.s Nguyn Thnh Sn

SVTH : T, Hoi, Phc, Thanh

CH K S TRONG GIAO DCH MNG