基于Android系统安全邮件系统的研究与实现
发布时间:2018-10-11 11:37
【摘要】:随着移动互联网以及智能终端的兴起,在移动终端使用电子邮件成为了趋势。但由于电子邮件是以明文方式进行传输,容易被攻击者截取,加上Android系统自身存在的安全隐患以及智能终端丢失后容易发生信息泄露等问题,给使用者造成了很大困扰,甚至会造成更严重的损失。本文就如何建立一个基于Android系统的安全邮件系统进行了研究。 本文通过分析邮件系统的安全威胁以及加密技术原理,选取基于PKI的方案实现电子邮件的加密,其中选用RSA非对称加密算法。本文提出一种基于Android平台的安全邮件方案,通过建立具有可信任性的服务器进行用户认证,以完成邮件的安全传输。其中在服务器与客户端交互过程中,设计了基于非对称加密与随机密钥的传输流程,确保私钥安全的安全传输。本文在开源邮件客户端的基础之上,实现加密模块完成证书请求、密钥传输、邮件加密、解密等功能,同时对客户端界面进行简化,提高其使用效率。最后经过测试表明,该客户端具有良好的安全性以及实用性。 该系统实现了端到端的电子邮件加密,并解决了移动终端上信息安全存储的问题。该系统是在邮件系统之上进行邮件加密,因此用户不需要更换邮件服务器。目前该系统正在试运行,通过安装客户端并在网络环境下添加邮件账户即可自动分配密钥,完成加密邮件的收发。
[Abstract]:With the rise of mobile Internet and intelligent terminals, the use of email in mobile terminals has become a trend. However, due to the transmission of e-mail in clear text, which is easy to be intercepted by the attacker, the security hidden danger of Android system itself and the information leakage after the intelligent terminal is lost, it has caused great trouble to the user. It can cause even more serious damage. This paper studies how to build a secure mail system based on Android system. By analyzing the security threat and the principle of encryption technology of mail system, this paper selects the scheme based on PKI to realize the encryption of email, among which RSA asymmetric encryption algorithm is chosen. In this paper, a secure mail scheme based on Android platform is proposed, which can authenticate users by building a trusted server to complete the secure mail transmission. In the course of the interaction between the server and the client, the transmission flow based on asymmetric encryption and random key is designed to ensure the secure transmission of the private key. Based on the open source mail client, this paper implements the encryption module to complete the functions of certificate request, key transmission, mail encryption and decryption. At the same time, it simplifies the client interface and improves its efficiency. Finally, the test shows that the client has good security and practicability. The system realizes end-to-end e-mail encryption and solves the problem of secure storage of information on mobile terminal. The system encrypts mail on the mail system, so users do not need to replace the mail server. At present, the system is in trial operation. By installing the client and adding the mail account in the network environment, the key can be automatically distributed to complete the sending and receiving of encrypted mail.
【学位授予单位】:北京邮电大学
【学位级别】:硕士
【学位授予年份】:2015
【分类号】:TP393.098
本文编号:2264053
[Abstract]:With the rise of mobile Internet and intelligent terminals, the use of email in mobile terminals has become a trend. However, due to the transmission of e-mail in clear text, which is easy to be intercepted by the attacker, the security hidden danger of Android system itself and the information leakage after the intelligent terminal is lost, it has caused great trouble to the user. It can cause even more serious damage. This paper studies how to build a secure mail system based on Android system. By analyzing the security threat and the principle of encryption technology of mail system, this paper selects the scheme based on PKI to realize the encryption of email, among which RSA asymmetric encryption algorithm is chosen. In this paper, a secure mail scheme based on Android platform is proposed, which can authenticate users by building a trusted server to complete the secure mail transmission. In the course of the interaction between the server and the client, the transmission flow based on asymmetric encryption and random key is designed to ensure the secure transmission of the private key. Based on the open source mail client, this paper implements the encryption module to complete the functions of certificate request, key transmission, mail encryption and decryption. At the same time, it simplifies the client interface and improves its efficiency. Finally, the test shows that the client has good security and practicability. The system realizes end-to-end e-mail encryption and solves the problem of secure storage of information on mobile terminal. The system encrypts mail on the mail system, so users do not need to replace the mail server. At present, the system is in trial operation. By installing the client and adding the mail account in the network environment, the key can be automatically distributed to complete the sending and receiving of encrypted mail.
【学位授予单位】:北京邮电大学
【学位级别】:硕士
【学位授予年份】:2015
【分类号】:TP393.098
【参考文献】
相关期刊论文 前3条
1 ;One-way quantum identity authentication based on public key[J];Chinese Science Bulletin;2009年12期
2 韩雯;;AES加密算法分析及其安全性研究[J];石油工业计算机应用;2008年02期
3 刘鹏跃;;电子邮件安全技术研究与解决方案[J];中国新通信;2013年20期
,本文编号:2264053
本文链接:https://www.wllwen.com/guanlilunwen/ydhl/2264053.html
