Hanyar Samar da Kalmar Sirri Mai Girma da yawa don Samun Sabis na Cloud

Teburin Abubuwan Ciki

1. Gabatarwa
2. Hanyar Samar da Kalmar Sirri Mai Girma da yawa da aka Tsara
3. Tsarin Cikakken Tsarin Tabbatarwa
4. Binciken Tsaro da Yiwuwar Karyewa
5. Cikakkun Bayanai na Fasaha da Tsarin Lissafi
6. Sakamakon Gwaji da Bayanin Hoton
7. Misalin Nazarin Tsarin
8. Aikace-aikace na Gaba da Hanyoyin Ci Gaba
9. Bincike na Asali da Fahimta
10. Manazarta

1. Gabatarwa

Kwamfuta ta Cloud fasaha ce da ke girma cikin sauri wacce ke ba da software, hardware, kayan aiki, da ajiyar bayanai a matsayin sabis. Ana amfani da wannan fasaha a duk duniya don inganta kayan aiki da aiki na kasuwanci. Koyaya, don amfani da waɗannan sabis ɗin ta hanyar abokan ciniki da aka yi niyya, ana buƙatar ingantaccen tabbatar da kalmar sirri. Hanyoyin tabbatar da kalmar sirri na yanzu na cloud sun haɗa da kalmomin sirri na rubutu, kalmomin sirri na hoto, da kalmomin sirri na 3D, kowannensu yana da rauni na asali. Kalmomin sirri na rubutu suna da rauni ga hare-haren ƙamus da hare-haren ƙarfi. Kalmomin sirri na hoto suna ba da kyakkyawan tunawa amma suna fama da rikitarwa na lokaci da ƙarancin sararin kalmar sirri. Kalmomin sirri na 3D suma suna da iyakoki. Wannan takarda ta ba da shawarar hanyar samar da kalmar sirri mai girma da yawa wacce ke la'akari da ma'aunin shigarwa da yawa na tsarin cloud don ƙirƙirar ingantaccen tsarin tabbatarwa.

2. Hanyar Samar da Kalmar Sirri Mai Girma da yawa da aka Tsara

Hanyar da aka tsara tana tabbatar da damar yin amfani da sabis na cloud ta amfani da kalmar sirri mai girma da yawa. Tana samar da kalmar sirri ta hanyar la'akari da ma'auni da yawa na tsarin cloud, kamar tambarin mai siyarwa, hotuna, bayanan rubutu, da sa hannu. Wannan hanya tana rage yiwuwar hare-haren ƙarfi sosai.

2.1 Bayanin Tsarin Gine-gine

Tsarin gine-gine ya ƙunshi mai samar da kalmar sirri mai girma da yawa wanda ke ɗaukar ma'aunin shigarwa da yawa daga mai amfani da yanayin cloud. Ana haɗa waɗannan ma'auni ta amfani da ingantaccen algorithm na hashing don samar da kalmar sirri ta musamman, mai ƙarfi. Tsarin gine-gine ya haɗa da matakin fuskar mai amfani, injin samar da kalmar sirri, da fuskar sabis na cloud.

2.2 Tsarin Zane-zane

Tsarin zane-zane yana nuna hulɗar tsakanin mai amfani, tsarin tabbatarwa, da sabis na cloud. Mai amfani yana ba da bayanai da yawa (rubutu, zaɓin hoto, sa hannu). Tsarin yana samar da kalmar sirri mai girma da yawa, ya yi hashing, kuma ya adana ta cikin aminci. Yayin shiga, mai amfani yana ba da bayanai iri ɗaya, kuma tsarin yana sake samar da kalmar sirri don tabbatarwa.

2.3 Cikakkun Bayanai na Algorithm

Algorithm don samar da kalmar sirri mai girma da yawa shine kamar haka:

Tattara bayanan mai amfani: kalmar sirri ta rubutu, hotuna da aka zaɓa, da bayanan sa hannu.
Canza kowane bayani zuwa wakilcin lamba.
Haɗa wakilcin lambobi a cikin tsari da aka ƙayyade.
Aiwatar da aikin hashing na sirri (misali, SHA-256) zuwa jerin da aka haɗa.
Adana hash ɗin azaman kalmar sirri mai girma da yawa.

3. Tsarin Cikakken Tsarin Tabbatarwa

3.1 Ma'aunin Shigarwa

Tsarin yana la'akari da ma'aunin shigarwa da yawa: kalmar sirri ta rubutu (haruffa da lambobi), hotuna (mai amfani ya zaɓa daga rukuni), da sa hannu (an zana ta amfani da linzamin kwamfuta ko taɓawa). Ana haɗa waɗannan ma'auni don samar da sararin kalmar sirri mai girma da yawa.

3.2 Tsarin Samar da Kalmar Sirri

Tsarin samarwa ya ƙunshi ɗaukar kowane bayani, canza shi zuwa tsari daidaitacce, sannan haɗa su ta amfani da ingantaccen algorithm. Sakamakon kalmar sirri yana da juriya ga hare-haren ƙamus da hare-haren ƙarfi saboda babban haɗin entropy.

3.3 Tsarin Fuskar Mai Amfani

Fuskar mai amfani tana gabatar da wuraren shigarwa guda uku: filin rubutu don kalmar sirri ta rubutu, grid na hotuna don zaɓi, da zane mai zane don shigar da sa hannu. Fuskar tana ba da amsa a lokaci na gaske game da ƙarfin kalmar sirri.

4. Binciken Tsaro da Yiwuwar Karyewa

Takardar ta samo yiwuwar karye tsarin tabbatarwa. Idan aka ɗauka sararin kalmar sirri ta rubutu $10^6$, sararin zaɓin hoto $10^4$, da sararin sa hannu $10^8$, jimillar sararin kalmar sirri shine $10^{18}$. Yiwuwar nasarar harin ƙarfi a ƙoƙari ɗaya shine $P = 1 / 10^{18}$, wanda ba shi da muhimmanci. Wannan ya sa tsarin ya kasance mai tsaro sosai daga hare-haren ƙarfi da hare-haren ƙamus.

5. Cikakkun Bayanai na Fasaha da Tsarin Lissafi

Jimillar entropy na kalmar sirri mai girma da yawa ana bayar da ita ta:

$H = H_{rubutu} + H_{hoto} + H_{sa hannu}$

inda $H_{rubutu} = \log_2(10^6) \approx 20$ bits, $H_{hoto} = \log_2(10^4) \approx 13.3$ bits, da $H_{sa hannu} = \log_2(10^8) \approx 26.6$ bits. Jimillar entropy $H \approx 60$ bits, yana ba da tsaro mai ƙarfi.

6. Sakamakon Gwaji da Bayanin Hoton

Sakamakon gwaji ya nuna cewa hanyar samar da kalmar sirri mai girma da yawa tana ƙara sararin kalmar sirri sosai idan aka kwatanta da hanyoyin gargajiya. Hoton ginshiƙi da ke kwatanta sararin kalmar sirri (rubutu: $10^6$, hoto: $10^4$, 3D: $10^8$, mai girma da yawa: $10^{18}$) yana nuna haɓaka mai yawa. Tsarin kuma yana nuna rikitarwa na lokaci mai karɓuwa, tare da samar da kalmar sirri yana ɗaukar ƙasa da daƙiƙa 2 a matsakaici.

7. Misalin Nazarin Tsarin

Misali: Samun Ajiyar Bayanai na Cloud Mai Tsaro

Mai amfani yana son samun damar yin amfani da sabis na ajiyar cloud. Mai amfani yana ba da:

Kalmar sirri ta rubutu: "Cloud@2024"
Hoton da aka zaɓa: Tambarin kamfani na musamman daga rukuni na hotuna 10,000
Sa hannu: Sa hannu da aka zana da hannu ta hanyar shigar da taɓawa

Tsarin yana haɗa waɗannan bayanai kuma ya yi amfani da SHA-256 don samar da hash ɗin kalmar sirri mai girma da yawa: a3f5b8c1d2e4f6g7h8i9j0k1l2m3n4o5p6q7r8s9t0u1v2w3x4y5z6. Ana amfani da wannan hash don tabbatarwa, yana ba da babban matakin tsaro.

8. Aikace-aikace na Gaba da Hanyoyin Ci Gaba

Ayyukan gaba sun haɗa da haɗa bayanan biometric (sawun yatsa, gane fuska) cikin tsarin kalmar sirri mai girma da yawa. Ana iya faɗaɗa hanyar zuwa tabbatar da na'urorin IoT da tsarin tabbatarwa mai yawa. Bugu da ƙari, ana iya amfani da algorithms na koyon injin don nazarin halayen mai amfani don tabbatarwa mai ci gaba. Hakanan za'a iya amfani da hanyar ga tsarin sarrafa asali na blockchain.

9. Bincike na Asali da Fahimta

Fahimta ta Asali: Wannan takarda tana magance wani rauni na asali a cikin tabbatarwa na cloud—dogaro da kalmomin sirri guda ɗaya—ta hanyar ba da shawarar hanya mai girma da yawa wacce ta haɗa abubuwa na rubutu, hoto, da sa hannu. Fahimta ta asali ita ce ana iya ƙara entropy na kalmar sirri sosai ba tare da nauyin mai amfani ba, ta hanyar yin amfani da hanyoyin shigarwa da yawa.

Tsarin Hankali: Takardar tana bin ci gaba na hankali: gano iyakokin hanyoyin kalmar sirri na yanzu, ba da shawarar mafita mai girma da yawa, bayyana tsarin gine-gine da algorithm, da kuma nazarin haɓakar tsaro. Tsarin yana da daidaituwa kuma yana gina hujja mai ƙarfi don hanyar da aka tsara.

Ƙarfi da Rauni: Ƙarfin takardar yana cikin hanyar aiki don haɓaka tsaron kalmar sirri ba tare da buƙatar kayan aiki mai rikitarwa ba. Binciken lissafi na sararin kalmar sirri yana da gamsarwa. Koyaya, babban rauni shine rashin tattaunawa akan amfani—mai amfani na iya samun wahalar bayar da bayanai da yawa kowane lokaci. Bugu da ƙari, takardar ba ta magance hare-haren da za a iya kaiwa kan hanyoyin shigarwa ba (misali, keyloggers, ɗaukar hoton allo). Zaton cewa shigar da sa hannu na musamman ne kuma ana iya sake samarwa shi ma yana da tambaya, saboda sa hannu na iya bambanta.

Fahimta Mai Aiki: Ga masu aiki, ana iya aiwatar da manufar kalmar sirri mai girma da yawa azaman ƙarin mataki a cikin tsarin tabbatarwa mai yawa. Muhimmin abu shine daidaita tsaro da gogewar mai amfani. Aiwatarwa na gaba yakamata suyi la'akari da tabbatarwa mai daidaitawa, inda adadin girma ya bambanta bisa matakin haɗari. Kamar yadda O'Gorman (2003) ya lura a cikin "Kwatanta Kalmomin Sirri, Alamu, da Biometrics don Tabbatar da Mai Amfani," haɗa abubuwan tabbatarwa da yawa yana rage haɗarin lalacewa sosai. Hanyar takardar ta yi daidai da wannan ƙa'idar kuma tana ba da hanya mai dacewa don tsaron cloud.

10. Manazarta

Dinesha H A, Dr. V.K Agrawal. "Hanyar Samar da Kalmar Sirri Mai Girma da yawa don Samun Sabis na Cloud." International Journal on Cloud Computing: Services and Architecture (IJCCSA), Vol.2, No.3, Yuni 2012.
O'Gorman, L. "Kwatanta Kalmomin Sirri, Alamu, da Biometrics don Tabbatar da Mai Amfani." Proceedings of the IEEE, vol. 91, no. 12, 2003, pp. 2021-2040.
Mell, P., da T. Grance. "Ma'anar NIST na Kwamfuta ta Cloud." National Institute of Standards and Technology, Special Publication 800-145, 2011.
Jansen, W., da T. Grance. "Jagororin Tsaro da Sirri a cikin Kwamfuta ta Cloud ta Jama'a." NIST Special Publication 800-144, 2011.
Herley, C., da P. van Oorschot. "Ajandar Bincike da ke Amincewa da Dorewar Kalmomin Sirri." IEEE Security & Privacy, vol. 10, no. 1, 2012, pp. 28-36.