Abstract
The paper mainly discusses the integrity of the forwarded subscription message guaranteed by secure channel which encrypted in data communication by using data encryption standard (DES) algorithm and chaos code algorithm between broker nodes in the routing process of the contentbased publish/subscribe system. It analyzes the security of the secure channel encrypted with data communication by DES algorithm and chaos code algorithm, and finds out the secure channel can be easily attacked by known plain text. Therefore, the paper proposes the improved algorithm of message encryption and authentication, combining encryption and the generation of the message authentication code together to finish scanning at one time, which enhances both the secure degree and running efficiency. This secure channel system has a certain reference value to the pub/sub system requiring highly communication security.
Similar content being viewed by others
References
Tanenbaum A S, Steen M V.The Principle and Model of Distributed System [M]. Beijing: Tsinghua University Press, 2004:156–177 (Ch).
Kahate A.Cryptography and Security of Network [M]. Beijing: Tsinghua University Press, 2005:206–214 (Ch).
Eugster P, Felber P, Guerraoui R,et al. The Many Faces of Publish/Subscribe [J].ACM Computing Surveys, 2003,35 (6):621–626.
Fabret F, Jacobsen H A, Llirbat F,et al. Filtering Algorithms and Implementation for Very Fast Publish/Subscribe Systems [C]//ACM SIGMOD 2001. Banta Barbara, California: ACM Press, 2001:115–126.
Carzaniga A, Wolf AL. Forwarding in a Content-Based Network [C]//Proceedings of ACM SIGCOMM 2003. Karlsruhe, Germany: ACM Press, 2003:163–174.
Fiege L, Zeidler A, Buchmann A,et al. Security Aspects in Publish/Subscribe Systems [C]//Proceedings of the Third International Workshop on Distributed Event-Based Systems (DEBS). Berlin: Springer, 2004:295–302.
Miklos Z. Towards an Access Control Mechanism for Widearea Publish/Subscribe Systems [C]//Proc of the 1st International Workshop on Distributed Event-Based Systems (DEBS'02). Vienna, Austria: IEEE Press, 2002:104–117.
Kahski B.RFC1319: The MD2 Message-Digest Algorithm [R] Bedford: RSA Laboratories, 1992.
Rivest R.RFC1320: The MD4 Message-Digest Algorithm [R]. Massachusetts: MIT Laboratory for Computer science and Data Security, Inc, 1992.
Kohl NRFCl510: The Kerberos, Network Authentication service(V5) [R]. Massachusetts: MIT Laboratory for Computer science and Data Security, Inc. 1993.
Author information
Authors and Affiliations
Corresponding author
Additional information
Foundation item: Supported by the National Natural Science Foundation of China (60273014)
Biography: ZHU Shuren (1954-), male, Professor. Ph. D. research direction computer network security and distributed computation system.
Rights and permissions
About this article
Cite this article
Shuren, Z. Establishment of the secure channel between broker nodes in pub/sub system. Wuhan Univ. J. Nat. Sci. 11, 1441–1444 (2006). https://doi.org/10.1007/BF02831793
Received:
Issue Date:
DOI: https://doi.org/10.1007/BF02831793