Research On Security Technology Of Data Access In Mobile Internet

Mobile Internet is a combination of mobile technology and the Internet, between mobile client and server data exchange is facing many security threats, such as information eavesdropping, interception, tampering etc. The data transmission safety problems between the mobile client and the server of the confidentiality, integrity, consistency, non-repudiation still need further study.This topic use a mobile Internet application project as the research background, the project includes Android App, Web server side application, WeChat public number. After installing the Android smart phone App, users can register, earn points by browsing pictures, scan the QR code and other operations. The App will regularly submit user’s location information to the server, the user browsing picture records, the server returns an image sequence, positioning interval time, access time interval and other relevant information. The information of mobile client submitting to server contains sensitive data, the information that the server returns to the mobile client is non sensitive data such as image sequence information. According to the actual security requirements of the project in terms of data transmission, the sensitive data is transmitted after encryption and signature processing, from the perspective of application program to ensure data transmission confidentiality, integrity, consistency and non repudiation.Combined with the mobile data transmission security problems between the client and the server, this paper propose a security solution for data access in mobile Internet Environment. Through researching and analysising data security techniques and theories, this paper chooses related algorithms to achieve security solution. In order to ensure the confidentiality of data transmission, this paper encrypt the sensitive data by the symmetric encryption algorithm AES, which has the advantages of small computation and high efficiency. In order to guarantee the data integrity, consistency and non repudiation, this paper sign the ciphertext by the key length small, high strength safety digital signature algorithm SHAlwithECDSA.In this paper, a data transmission security scheme for the mobile Internet application is proposed and implemented, and it is applied to the sensitive data transmission process between Android App and server in the project. Finally, the availability of data access security scheme is verified by experiments.