The Design and implementation of Two General Security Models Based on Java
Abstract
The paper initiates the principle and implementation of two general security modules of password-based authentication and secure file transfer. It analyses the security of the current password, then proposes an approach that utilizes MD5 algorithm to encrypt password, finally stores the results in databases. To make the authentication system more flexibility, we introduce some policies: when users register, they can choose password model, they can modify password freely, they can choose the length of password independently etc. In the authentication process designed in this paper, the user inputs password which is processed to compare with the information stored in DB to authenticate user. If logon successful they will be able to access the secure file transfer module. And the design of secure file transfer module is the use of the SSL Protocol to establish security file transfer channels which can protect the confidential contents of the files against eavesdrop, alter and forge. The system is implemented in Java that supports SSL protocol, DES, MD5, which has the following virtues: briefness in design, authentication agility, secure and cheap in cost, and can help all kinds of companies to solve the problems of identity authentication and confidentiality of file transfer.