A Study Of Authentication Encryption System Based On Campus Data Center Communication Security

Together with the promote development of the electronic information technology human being already came into information society. Universities and colleges are the forerunner in the field of Internet applies , campus net has played important role in the development of universities and colleges. Together with the enlargement of campus net , there are more data amount and also more visiting form so there more demands on campus net information safety. For better data share and more safety, after a long term of research the concept of data centre came into being as well as its pattern.The attestation encrypts system is an important ingredient of the safe technology for a campus data centre, we discusses it here is just because there are inevitable system leak , communication leak , memory leak. Especially the serious damage brought about buy network detector.So that we need to build up a security system for campus data centre. The key point here is to build up a specialized administration pattern. So here the centralized management pattern to the server password came into being. It can largely improve the security, and also the convenience of management. For the safety of this pattern it calls for a certain encrypt to protect the server password. This paper brought forward a server password centralized management pattern making use of DES and ECC to blend the encrypt algorithm. Also there is a comparison with the current DES and the RSA commixture encrypt.Nowadays people use the Number field sieve (NFS) method to break the RSA algorithm translating. RSA algorithm method is easy to break. ECC is hard to break. That is to say ECC is more safe than RSA under the same secret key length condition. The translate time for the code is longer, it can provide better protection. Now DES and ECC blend encrypted mechanism having already demonstrated the fine safe function in testing process.This paper also stressed on the two key link of the safety measure of data centre communication: the attestation system for external consumer and the encrypt technology used inside data base. It suggest to build up concentrate attestation inside of the data centre, so that the consumer can get the service for just one attestation. Synthetical attestation system of campus data centre is also a set of Information management. The pattern of the management can be largely divided into two: Customer machine/ server pattern (Client/Server, be called C/S) and the Web browser/ server pattern for short (Browser/Server , shorter form B/S). Our system takes C/S and B/S commixture pattern. In consumer and customer part we use C/S pattern, when came to attestation process we take the B/S pattern.With regard to the real conditions of the application of campus data centre,two functions are found:Attestation dignify information record entering the module,the dignify attestation module,the time over attestion module data transmission encrypt module,the information gaining a module by holding physics characteristics.The attestation dignify information record entering module is to provide the attestation basis's for attestation system which puts correct attestation into practice.The module props up for the seurity swear to transfer a data,the data.Because of the inconsistency int the system attestation of the data centre,the dignity has design a common interface loaded to the system applying system attestation to make it easier to connect with the applicative system.The encrypt of data base in data centre is also a very important link,especially the widely used data encrypt of SQL data base and Oracle data base.By making the data encrypt as the characteristive property of the data base,SQL Server 2005 solved the problem.Besides providing the multiple echelons and rich encrypt algonthm outside its main benefit is that the consumen can choose the secret key which manages the data server.But in the up-to-date edition of Oracle-10g R2,the most timely technology turning up out to be the Transparant Data Encryption,TDE.TDE is used to encrypt the data.Going along with the changes the application block of SQL carries out generally,still can work regularly.In other words application can insert the encrypt data with the same grammar to an automotion being carried out on the data before application from middle,and the Oracle data base writes information in a disc.The choice following will untie the data transparently.So the application will continue working regularly.At present,our university network center and data center carry out the above-metioned passwords of data centralized the management and the pattern unified attestation of paying a visit in the caurse of testing.They have already accomplish the contruction of hardware structure,testing the security function of the software as over as encrypting attestion system,and the have got certain achievement.With the ceaseless application in each field of data center frame,the attestation and encryption of its communication will surely become an important direction to computer scientific research and development in the days to come.