%0 Journal Article %T 一种Android平台下高性能透明文件加密机制<br>A High??Performance Transparent File Encryption Mechanism on Android Platform %A 胡炀 %A 陶敬 %A 刘林峰 %A 李剑锋 %A 胡文君 %A 梁肖 %J 西安交通大学学报 %D 2016 %R 10.7652/xjtuxb201603019 %X 针对Android平台当前采用的文件加密机制不能兼顾高安全性和高I/O性能的问题,提出了一种新型的基于映射表加密和物理块加密的透明文件加密机制。该机制使用10轮AES??128块加密算法加密文件的逻辑块与物理块的映射关系,使用改进的7轮AES-128块加密算法加密存储文件数据的物理块,从而在安全性和I/O性能之间寻求平衡。通过密码学理论推导证明了该机制的密码强度不低于Android平台当前采用的加密机制,通过I/O性能理论分析得出该机制的I/O性能优于Android平台当前采用的文件加密机制。此外,在Google Nexus 4智能手机上分别对该机制和Android平台当前采用的文件加密机制进行了108种不同测试条件下的I/O性能测试,测试结果验证了I/O性能理论分析得出的结论,并且发现:该机制的I/O写入性能比率比Android平台当前采用的文件加密机制平均高出13??12%,该机制的I/O读取性能比率比Android平台当前采用的文件加密机制平均高出16.16%。<br>It is regarded as a design defect that high I/O performance is not compatible to high security in the file encryption mechanism used nowadays in Android platform. To solve this problem, we presented a new transparent file encryption mechanism based on the mapping chart encryption and physical block encryption. It applies 10??round AES-128 block cipher algorithm to the mapping chart encryption and applies revised 7??round AES-128 block cipher algorithm to physical block encryption, which contributes to the balance between I/O performance and high security. Then we performed cryptanalysis and proved that the cipher strength of our mechanism is not lower than Android’s. In addition, we have conducted I/O performance theoretical analysis and concluded that the I/O performance of this mechanism is higher than Android’s. Moreover, we also performed 108 I/O performance tests in different test conditions on Google Nexus 4 smart phone. The result of these tests not only verifies the conclusion proved by I/O performance analysis, but also shows that the I/O writing performance of our mechanism is 13.12% higher than Android’s and the I/O reading performance is 16.16% higher than that of Android system %K 文件加密机制 %K Android平台 %K I/O性能< %K br> %K file encryption mechanism %K Android platform %K I/O performance %U http://zkxb.xjtu.edu.cn/oa/DArticle.aspx?type=view&id=201603019