EPG系统数据传输安全性的研究

发布时间：2018-04-18 19:17

本文选题：电子节目导航系统 + 文件监听　；参考：《北京邮电大学》2016年硕士论文

【摘要】：伴随着我国数字电视技术的快速发展,EPG(ElectronicProgram Guide),即电子节目导航系统孕育而生,它已经衍变成数字电视一项不可或缺的基础性业务。从功能来讲,它是电视和用户之间传递消息的一个平台,提供了人机交互的一个窗口,供用户快捷有效的操作,但相关安全性问题日益凸显。目前EPG系统还没有一套完整的安全保护机制,它自身存在诸多的安全问题,其中最大的安全隐患是数据的非法篡改,一旦攻击者将带有目的性、破坏性的被篡改过的内容在电视端顺利播放,将造成极其恶劣的影响。课题主要解决EPG系统数据的非法篡改这个安全性问题,结合触发式文件监听技术与消息完整性验证技术进行EPG系统数据传输安全性方案的设计。其中数据完整性检测利用论文中改进过的SHA-1算法,实现对EPG信息完整性的验证。方案最终目的是防止被篡改过的EPG数据推向机顶盒。本文主要内容如下:首先,本文阐述了 EPG系统的结构,分析了 EPG系统存在的安全隐患,对EPG系统安全性需求进行了分析,并对课题相关技术做了研究。其次,对课题方案中重点采用的核心算法SHA-1进行了深入的研究及有效的改进。根据目前SHA-1算法在碰撞性方面的缺陷,本文从压缩函数和消息扩展方式两方面对SHA-1算法进行了改进,改进后的SHA-1算法命名为E-SHA-1。E-SHA-1算法对本课题方案的设计起到了关键性的作用。接着,对提出的三个初步方案进行了简单介绍,分析了各自的优势与不足。最终,基于E-SHA-1算法,本文详细设计并实现了 EPG系统数据传输安全性方案。方案分解成EPG文件预处理系统的设计与实现;EPG文件监听系统的设计与实现;EPG文件完整性检测系统的设计与实现。对其中各功能模块的划分及实现过程中关键接口的设计进行了具体描述。最后,对课题方案及E-SHA-1算法进行了测试。首先从完备度、雪崩效应度、严格雪崩效应度、抗碰撞性、消息的扩散性及算法效率这六个方面对E-SHA-1算法进行了全面的测试,测试结果证明该算法安全性得到了明显提高;其次是对方案各功能模块及系统整体性的测试,测试结果证明方案达到了预期效果,严格阻止被篡改过的EPG文件顺利推向机顶盒,方案设计完整,适用于实际的EPG系统环境。
[Abstract]:With the rapid development of digital television technology in China, EPG Electronic Program Guide, or electronic program navigation system, has evolved into an indispensable basic business of digital television.In terms of function, it is a platform for transmitting messages between TV and users. It provides a window of human-computer interaction for users to operate quickly and effectively, but the related security problems become increasingly prominent.At present, EPG system does not have a complete security protection mechanism, it has many security problems, among which the biggest security hidden danger is illegal tampering of data, once the attacker will have a purpose,Destructive tampered content will play smoothly on the TV, which will have an extremely bad effect.This paper mainly solves the security problem of illegal tampering of EPG system data, and designs the security scheme of data transmission in EPG system by combining trigger file monitoring technology and message integrity verification technology.Data integrity detection uses the improved SHA-1 algorithm in this paper to verify the integrity of EPG information.The ultimate goal of the scheme is to prevent tampered EPG data from pushing to the set-top box.The main contents of this paper are as follows: firstly, this paper describes the structure of EPG system, analyzes the hidden dangers of EPG system, analyzes the security requirements of EPG system, and studies the related technologies.Secondly, the core algorithm SHA-1, which is used in the project, is studied deeply and improved effectively.According to the defects of SHA-1 algorithm in collision, this paper improves the SHA-1 algorithm from compression function and message expansion mode. The improved SHA-1 algorithm named E-SHA-1.E-SHA-1 algorithm plays a key role in the design of the project.Then, three preliminary schemes are introduced, and their advantages and disadvantages are analyzed.Finally, based on the E-SHA-1 algorithm, this paper designs and implements the data transmission security scheme of EPG system in detail.The scheme is decomposed into the design and implementation of the EPG file preprocessing system; the design and implementation of the EPG file monitoring system.The partition of each functional module and the design of key interfaces in the process of implementation are described in detail.Finally, the project and E-SHA-1 algorithm are tested.Firstly, the E-SHA-1 algorithm is tested from six aspects: completeness, avalanche effect, strict avalanche effect, anti-collision, message diffusion and algorithm efficiency. The test results show that the security of the algorithm is improved obviously.The test results show that the scheme achieves the desired results and strictly prevents the tampered EPG files from being pushed to the set-top box. The scheme design is complete and suitable for the actual EPG system environment.
【学位授予单位】：北京邮电大学
【学位级别】：硕士
【学位授予年份】：2016
【分类号】：TP309

【参考文献】