计算机工程与应用 ›› 2012, Vol. 48 ›› Issue (25): 92-97.

• 网络、通信、安全 • 上一篇    下一篇

双连接文件安全传输的设计与实现

温先辉1,2,马兆丰1,2,蒋  铭1,2,钮心忻1,杨义先1   

  1. 1.北京邮电大学 信息安全中心,北京 100876
    2.北京国泰信安科技有限公司,北京 100876
  • 出版日期:2012-09-01 发布日期:2012-08-30

Design and implementation of dual connection secure file transfer

WEN Xianhui1,2, MA Zhaofeng1,2, JIANG Ming1,2, NIU Xinxin1, YANG Yixian1   

  1. 1.Information Security Center, Beijing University of Posts and Telecommunications, Beijing 100876, China
    2.Beijing National Security Science and Technology Co. Ltd., Beijing 100086, China
  • Online:2012-09-01 Published:2012-08-30

摘要: 针对文件传输存在的安全性缺陷,提出了一种基于转发模式的双连接文件安全传输方法。采用转发隔离思想设计了双连接结构,对文件存储服务器和客户端进行隔离,通过文件安全传输协议栈实现数据的全程加密和可靠传输,并讨论和解决了双连接结构的数据传输引起的流量控制问题。实验结果表明,基于转发模式的双连接文件安全传输在确保服务器安全性和数据密文传输的同时,保障了文件传输的速度和效率。

关键词: 转发, 双连接, 安全传输, 隔离

Abstract: Against file transfer security flaws, a dual connection secure file transfer method is proposed based on forwarding model. A dual connection structure is designed by the ideas of forwarding and isolation, which isolates file storage server and client. Full encryption and reliable data transmission is achieved by secure file transfer protocol stack. And a problem of flow control caused by the dual connection structure is discussed and resolved. The experimental results show that secure file transfer method by dual connection based on forward model not only ensures ciphertext transmission and the security of server, but also ensures the speed and efficiency of file transfer.

Key words: forward, dual connection, secure transfer, isolate