基于SM4算法的白盒密码视频数据共享系统

doi:10.13700/j.bh.1001-5965.2020.0080

北京航空航天大学学报 ›› 2020, Vol. 46 ›› Issue (9): 1660-1669.doi: 10.13700/j.bh.1001-5965.2020.0080

基于SM4算法的白盒密码视频数据共享系统

吴震^1,2, 白健¹, 李大双³, 李斌^1,2, 曾兵^1,2, 张正强^1,2

1. 中国电子科技网络信息安全有限公司, 成都 610041;
2. 成都三零凯天通信实业有限公司, 成都 610041;
3. 中国电子科技第三十研究所, 成都 610041

收稿日期:2020-03-03 发布日期:2020-09-22
通讯作者: 吴震 E-mail:wuzhen@30kt.com
作者简介:吴震女,硕士,高级工程师。主要研究方向:多媒体通信、网络信息安全技术;白健男,硕士,高级工程师。主要研究方向:密码算法、区块链技术;李大双男,博士,研究员。主要研究方向:密码算法、网络通信技术;李斌男,硕士,高级工程师。主要研究方向:网络信息安全技术、人工智能技术;曾兵男,硕士,高级工程师。主要研究方向:密码技术、信息安全技术;张正强男,工程师。主要研究方向:网络信息安全。
基金资助:
国家重点研发计划（2016YFC0801004）

White-box cryptographic video data sharing system based on SM4 algorithm

WU Zhen^1,2, BAI Jian¹, LI Dashuang³, LI Bin^1,2, ZENG Bing^1,2, ZHANG Zhengqiang^1,2

1. China Electronics Technology Cyber Security Co., Ltd., Chengdu 610041, China;
2. Chengdu Sanling Kaitian Communication Industry Co., Ltd., Chengdu 610041, China;
3. The 30 th Research Institute of CETC, Chengdu 610041, China

Received:2020-03-03 Published:2020-09-22
Supported by:
National Key R & D Program of China (2016YFC0801004)

摘要/Abstract

摘要： 基于SM4算法的白盒密码视频数据共享系统是一种保障监控视频数据跨级跨域共享安全的系统，提出了一种基于国密SM4算法的白盒密码实现方式，并分析了算法的安全性，解决了SM4算法在非信任硬件环境中的安全运行问题。研制了基于后台权限控制机制的视频数据安全共享软件系统，包括共享数据上传/下载、共享审核、数据白盒加密处理、访问控制、基于白盒密码算法的共享视频解密播放器，实现了视频数据共享全过程的安全管控。搭建了实验环境，对所提系统进行了功能性能实验。实验结果表明，所提系统功能性能满足设计要求。

关键词: 白盒密码, SM4算法, 加密, 视频数据, 安全共享

Abstract: White-box cryptographic video data sharing system based on SM4 algorithm is a system that guarantees the security of cross-level and cross-domain sharing of surveillance video data.In this paper, we propose a white-box cipher implementation method based on SM4 cryptographic algorithm,and analyze the security of the algorithm,solves the problem how the SM4 algorithm can compute safely in untrusted hardware environments.In addition, we developed a video data security sharing software system based on background permission control mechanism, including shared video data upload/download, sharing audit,data white-box encryption, access control functions, and shared video decryption player based on white-box cryptographic algorithm, realizing the security management and control of the entire process of video data sharing.Then we set up the experimental environment, and the system's functional performance experiment was performed. The experimental results show that the system's functional performance meets the design requirements.

Key words: white-box cryptography, SM4 algorithm, encryption, video data, secure sharing

中图分类号:

TN918.91

吴震, 白健, 李大双, 李斌, 曾兵, 张正强. 基于SM4算法的白盒密码视频数据共享系统[J]. 北京航空航天大学学报, 2020, 46(9): 1660-1669.

WU Zhen, BAI Jian, LI Dashuang, LI Bin, ZENG Bing, ZHANG Zhengqiang. White-box cryptographic video data sharing system based on SM4 algorithm[J]. Journal of Beijing University of Aeronautics and Astronautics, 2020, 46(9): 1660-1669.

参考文献

[1] 中华人民共和国公安部.公共安全视频监控联网信息安全技术要求:GB 35114-2017[S].北京:中国标准出版社,2017:4-5.Ministry of Public Security of the PRC.Technical requirements for information security of video surveillance network system for public security:GB 35114-2017[S].Beijing:China Standard Press,2017:4-5(in Chinese).
[2] COLLBERG C,NAGRA J.软件加密与解密[M].崔孝晨,译.北京:人民邮电出版社,2012:5-6.COLLBERG C,NAGRA J.Surreptitious software:Obfuscation,watermarking,and tamperproofing for software protection[M].CUI X C,translated.Beijing:Posts & Telecom Press,2012:5-6(in Chinese).
[3] ANDERSON R,KUHN M.Low cost attacks on tamper resistant devices[C]//Security Protocols 1997.Berlin:Springer,1997:125-136.
[4] BIHAM E,SHAMIR A.Differential fault analysis of secret key cryptosystems[C]//17th Annual International Cryptology Conferenceon Advances in Cryptology.Berlin:Springer,1997:513-525.
[5] BIHAM E,SHAMIR A.Power analysis of the key scheduling of the AES candidates[C]//2nd AES Candidate Conference,1999:22-23.
[6] BONEH D,DEMILLO R A,LIPTON R J.On the importance of eliminating errors in cryptographic computations[J].Journal of Cryptology,2001,14(2):101-119.
[7] CHOW S,EISEN P,JOHNSON H,et al.White-box cryptography and an AES implementation[C]//Cryptography-SAC 2002.Berlin:Springer,2002:250-270.
[8] 周洁,白健.基于余数系统的SM2签名算法的白盒实现[C]//中国密码学会2017年会,2017:71-73.ZHOU J,BAI J.White box implementation of the SM2 signature algorithm based on the remainder system[C]//Chinese Association for Cryptologic Research 2017 Annual Meeting,2017:71-73(in Chinese).
[9] 潘文伦,秦体红,贾音,等.对两个SM4白盒方案的分析[J].密码学报,2018,5(6):651-670.PAN W L,QIN T H,JIA Y,et al.Analysis of two SM4 white box scenarios[J].Journal of Cryptologic Research,2018,5(6):651-670(in Chinese).
[10] CHOW S,EISEN P,JOHNSON H,et al.A white-box DES implementation for DRM applications[C]//Digital Rights Management-DRM 2002.Berlin:Springer,2003:1-15.
[11] XIAO Y Y,LAI X J.White-box crytography and implementation of SMS4[C]//Proceedings of the 2009 CACR Annual Meeting.Beijing:Science Press,2009:24-34.
[12] BILLET O,GILBERT H,ECH-CHATBI C.Cryptanalysis of a white box AES implementation[C]//Selected Areas in Cryptography-SAC 2004.Berlin:Springer,2005:227-240.
[13] 国家密码管理局.SM4分组密码算法:GM/T 0002-2012[S].北京:中国标准出版社,2012.State Cryptography Administration Office of Security Commercial Code Administration.SM4 block cipher algorithm:GM/T 0002-2012[S].Beijing:China Standard Press,2012(in Chinese).
[14] 国家密码管理局.信息安全技术SM4分组密码算法:GB/T 32907-2016[S].北京:中国标准出版社,2016.State Cryptography Administration Office of Security Commercial Code Administration.Information security technology-SM4 block cipher algorthm:GB/T 32907-2016[S].Beijing:China Standard Press,2016(in Chinese).
[15] 吕述望,苏波展,王鹏,等.SM4分组密码算法综述[J].信息安全研究,2016(11):995-1007.LU S W,SU B Z,WANG P,et al.Overview on SM4 algorithm[J].Journal of Information Security Research,2016(11):995-1007(in Chinese).
[16] 国家密码管理局.SM3密码杂凑算法:GM/T 0004-2012[S].北京:中国标准出版社,2012.State Cryptography Administration Office of Security Commercial Code Administration.SM3 cryptographic hash algorithm:GM/T 0004-2012[S].Beijing:China Standard Press,2012(in Chinese).
[17] MICHIELS W,GORISSEN P,HOLLMANN H D L.Cryptanalysis of a generic class of white-box implementations[C]//The Selected Areas in Cryptography.Berlin:Springer,2009:414-428.

基于SM4算法的白盒密码视频数据共享系统

White-box cryptographic video data sharing system based on SM4 algorithm

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 6

编辑推荐

Metrics

本文评价

[1]	王玮, 黄浩, 谢长生, 韩林. 基于视频内容关联密钥加密算法[J]. 北京航空航天大学学报, 2015, 41(1): 117-123.
[2]	崔竞飞, 王劲林, 张振. 同轴接入设备的系统升级机制设计[J]. 北京航空航天大学学报, 2014, 40(10): 1355-1360.
[3]	康一梅, 王涛, 胡江, 赵磊. 基于变化映射表的WSN通信数据语义安全算法[J]. 北京航空航天大学学报, 2010, 36(9): 1043-1047.
[4]	肖晨, 马世龙, 吕卫峰, 王丽丰. 流媒体系统多数据流安全的动态选择控制模型[J]. 北京航空航天大学学报, 2008, 34(11): 1292-1297.
[5]	姜正涛,刘建伟,秦波,王育民. 加密 \|n\|+k bit明文的高效公钥概率加密体制[J]. 北京航空航天大学学报, 2008, 34(01): 43-46.
[6]	林学练, 刘旭东, 怀进鹏. XML数据安全系统的研究与实现[J]. 北京航空航天大学学报, 2003, 29(4): 362-365.