I基于DES算法的银行系统安全登录设计摘要随着信息与通信技术的迅猛发展和广泛应用,网络与信息系统基础性、全局性的作用日益增强,人们通过互联网进行信息交流,难免涉及到用户登陆安全问题,这不仅关系到个人隐私甚至可能是国家机密,国家安全。银行系统旨在为员工提供信息管理、安全高效和操作方便的界面,建立一个沟通员工与管理员、员工与银行的服务系统。从这个意义上来说,采取对银行系统用户密码的有效加密、邮箱账号激活以及异地登陆提醒等措施,就是我们必须面对的问题。本文对用户安全登陆进行了深入的研究,一方面,我们采用DES算法对密码进行加密及存储,会经过以下几个步骤:初始置换IP、DES算法子密钥的产生、DES算法的扩展置换、S盒置换、P盒置换以及末置换函数;第二方面,我们使用javaMail给用户的邮箱发送激活账号邮件,对于刚注册的账号,如果没有邮箱激活这一过程,用户将不能登陆系统;第三方面,系统自动匹配邮箱之前登陆的IP地址,当出现新的IP登陆时,则判断为陌生IP在异地登陆并且对于连续多次输入错吗密码次数进行登录限制。DES存在弱密钥和补密钥的特征。在以前的密钥设计过程中,弱密钥是不可避免的但用户被告诫尽量不要使用补密钥。因此本次毕设中使用补密钥的去实现加密和解密过程。最终通过以上三个步骤,并且使用SSM框架,将整个系统划分为表现层,Controller层,Service层,Dao层四层,完成整个银行登录设计和系统功能的设计,保证了银行系统用户登陆的安全性。关键词:DES;登录;SSM;安全IIAbstractWiththerapiddevelopmentandwideapplicationofinformationandcommunicationtechnology,thebasicandoverallroleofnetworkandinformationsystemisincreasingdaybyday.PeoplecommunicateinformationthroughtheInternet,whichinevitablyinvolvesthesecurityofuserlanding.Thisisnotonlyrelatedtopersonalprivacy,butalsopossiblynationalsecretandnationalsecurity.Thebanksystemaimstoprovideemployeeswithinformationmanagement,safe,efficientandeasytooperateinterface,andestablishaservicesystemtocommunicatewithemployeesandmanagers,employeesandbanks.Inthissense,wehavetofacetheproblemofeffectivelyencryptinguserpasswords,activatingmailboxaccountsandremindingpeopletologonindifferentplaces.Thispapermakesadeepresearchonuser'ssecurelogin.Ontheonehand,weuseDESalgorithmtoencryptandstorepasswords,whichwillgothroughthefollowingsteps:initialreplacementIP,generationofDESalgorithmsub-key,extendedreplacementofDESalgorithm,S-boxreplacement,P-boxreplacementandlastreplacementfunction;ontheotherhand,weuseJavaMailtosendactivationaccountemailtousers.Fornewlyregisteredaccounts,ifthereisnoemailactivationprocess,userswillnotbeabletologintothesystem;third,thesystemautomaticallymatchestheIPaddressbeforethemailboxlogin.WhenanewIPloginoccurs,itjudgesthattheunfamiliarIPislandinginanotherplaceandrestrictsthenumberoftimesthatthewrongpasswordisenteredrepeatedly.DEShasthecharacteristicsofweakkeyandcomplementarykey.Inthepastkeydesignprocess,weakkeyisinevitable,butusersarewarnednottousecomplementarykeyasfaraspossible.Therefore,thecomplementarykeyisusedtorealizetheencryptionanddecryptionprocess.Finally,throughtheabovethreesteps,andusingtheSSMframework,thewholesystemisdividedintofourlayers:theperformancelayer,thecontrollerlayer,theservicelayer,andtheDAOlayer,tocompletethedesignofthewholebanklogindesignandsystemfunctions.Itguaranteesthesecurityofuserlogininbankingsystem.Keywords:DataEncrytionStandard;landing;SSM;SecurityIII目录1绪论....................................................................11.1研究背景...........................................................11.2研究内容..............................................
