信息网络安全

信息网络安全 ›› 2015, Vol. 15 ›› Issue (9): 119-123.doi: 10.3969/j.issn.1671-1122.2015.09.028

• 入选论文 • 上一篇    下一篇

不安全通信中的用户隐私泄露问题

芦天亮1, 王侨1, 刘颖卿2()   

  1. 1. 中国人民公安大学网络安全保卫学院,北京100038
    2. 中国移动通信有限公司研究院,北京100053
  • 收稿日期:2015-07-15 出版日期:2015-09-01 发布日期:2015-11-13
  • 作者简介:

    作者简介: 芦天亮(1985-),男,河北,讲师,博士,主要研究方向:网络攻防;王侨(1994-),男,贵州,本科,主要研究方向:网络安全与执法技术;刘颖卿(1989- ),女,湖南,硕士研究生,主要研究方向:移动互联网安全。

Problems of User’s Privacy Leakage During Insecure Communication

Tian-liang LU1, Qiao WANG1, Ying-qing LIU2()   

  1. 1. School of Network Security Safeguard, People’s Public Security University of China, Beijing 100038, China
    2. Institute of China Mobile Communications Co. Ltd., Beijing 100053, China
  • Received:2015-07-15 Online:2015-09-01 Published:2015-11-13

RichHTML

0

PDF (PC)

190

摘要:

网络已经成为人们日常生活和工作中密不可分的一部分,但也是泄露用户隐私信息的罪魁祸首。首先,文章对当前隐私泄露的现状进行概述,总结了近几年典型的隐私泄露事件。然后,从用户端、通信网络和服务端三个方面分析了主要的用户信息泄露途径。接着,重点对用户上网过程中不安全通信造成的隐私泄露问题进行了研究,包括明文登录、MD5认证登录以及注册过程。最后,从隐私保护技术和法律法规方面提出了相关建议。

关键词: 用户隐私, 泄露, 不安全通信, 登录, 注册

Abstract:

The Internet has become an inseparable part of our daily life and work, but also become the chief culprit of user’s privacy leakage. First, the current status of privacy leakage was overviewed, and the typical privacy leakage events in recent years were summarized. Second, the major approaches of user’s information leakage were analyzed from three aspects: the client, the network communication and the server. Then, the privacy leakage caused by insecure communication during the users surfing the Internet was mainly studied, including plaintext login, MD5 authentication login and user registration. Finally, suggestions are put forward from the aspects of privacy protection technology, laws and regulations.

Key words: user’s privacy, leakage, insecure communication, login, register

中图分类号: