Design And Implementation Of Smart Password Key Based On Domestic Cipher Standard

Smart password key,as the identification and information encryption tool,has a pivotal role to play,and widely used in ensuring the secure operation of network and system platforms.However,along with the widespread application of domestic trusted platforms,the current smart password keys are still suffering from insufficient security level,insufficient versatility and compatibility of software interface,too small storage space,restricted browser applications.Therefore,it is urgent to develop a new type of smart password key that is in line with the national policy of information technology application innovation and has stronger adaptability to domestic systems.To solve the above problems,the smart password key designed in this paper uses the HX6802 master chip which has been tested by the Commercial Cryptography Test Centre of State Cryptography Administration,this chip supports SM1,SM2,SM3 and SM4 domestic cipher algorithms,with higher security and faster encryption speed than international algorithms;the chip capacity can support 8,16,32 and 64GB,together with the USB Mass Storage transfer designed into the software system,the smart key can enable bulk data transfer and mass storage.In order to achieve cross-browser applications,this paper proposes a method to achieve bi-directional communication between browser web pages and local programs through AJAX+HTTP SERVER mechanism based on Browser/Server architecture;the whole software system is designed and implemented based on the domestic cipher SKF standard,and the data communication between the application and the smart password key adopts the Libusb driverless design.SKF standard can effectively improve the compatibility and adaptability of the smart password key with domestic operating systems compared to the mainstream CSP and PKCS#11.The main work in the paper focused on the design and implementation of the smart password key system and included the following four aspects.Firstly,this paper investigates the research status and practical application of theories and technologies related to smart password keys at home and abroad.It combines with pre-solved problems,determines the overall requirements of the system,and analyses from functional and non-functional aspects.Secondly,the system architecture is designed in general,and the technical solutions and implementation principles are in-depth studied,laying the foundation for the detailed design of the system.Thirdly,the core part of the software system is designed in detail from four levels:firmware,SKF standard interface,domestic operating system support and cross-browser application.The firmware system includes the file storage,security scheduling,data transmission,and domestic cipher algorithm support.In the file storage part,the design of chain file storage management is proposed for NORFLASH to prevent the generation of fragmented space and improve query and writing efficiency.The design of SKF standard interface includes:detailed design of command processing and system instructions;the cross-browser application includes:AJAX communication,HTTP service and HTTP data request.Fourth,according to the detailed design of the system,complete the system implementation.The test process are developed,and the system is tested in terms of function,performance and compatibility respectively.The result shows that the system support the domestic cipher algorithm,and it meets the demand of the functions of the key generation,secure storage,signature verification,data encryption and decryption,cross-browser application.Moreover,it has a strong adaptability with domestic platforms,and is in line with the national policy of information technology application innovation.The system security level has been greatly improved,which can provide a more reliable and credible application environment for users,and the expected design goal is achieved.