從Java語言的觀點探討軟體IC的安全機制

Abstract

隨著網際網路技術的日新月異，程式設計師對於網路軟體開發技術的要求也大為提升。Java語言就是因應此一潮流而誕生，它提供了跨平台功能與符合軟體IC的物件導向特性，可讓程式設計師快速地建構出正確無誤的軟體。本論文旨在探討Java語言的安全性，包括在交換資訊時的加解密、簽章、使用者對下載的Java Applet來源之鑑別等。並以實作一套全球資訊網上無記名投票系統的選票產生器為例，說明這些安全機制之應用。

The Java language has the characteristic of being object-oriented, just like the feather of software ICs. Using Java, programmer can make their products more efficient. And also, software from Java often can cross-platform. The goal of this thesis is to discuss the security of Java-based software ICs, The topics discussed are these: (1) authentication of downloading Java applets, (2) actions of signing applets, and (3) encryption and decryption of data carried by applets. A practical system, balloting through the Internet, is given as an example to illustrate the concepts and methods discussed.