| 改进的PKI可信度模型 |
| |
| 引用本文: | 张明德,郑雪峰,吕述望.改进的PKI可信度模型[J].小型微型计算机系统,2012,33(2):370-375. |
| |
| 作者姓名: | 张明德 郑雪峰 吕述望 |
| |
| 作者单位: | 1. 北京科技大学计算机与通信工程学院,北京,100083
2. 信息安全国家重点实验室,北京,100039 |
| |
| 摘 要: | 为提高证书依赖方(Relying Party)对证书持有者(Subscriber)信任评价的准确度,提出一种改进的PKI可信度模型.通过引入密钥安全期和优化不可信因子,严格区分证书可信度和私钥可信度,提出对应的计算公式,并给出组合密钥可信度和平均密钥可信度的计算方法.针对单级CA信任模型,推导出平均证书可信度和平均私钥可信度.该模型将影响密钥可信度的多个关键因素统一体现在单个计算公式中,不仅能够适应多种PKI信任模型,同时为提高证书持有者信任评价的准确度提供计算依据.
|
| 关 键 词: | PKI 密钥安全期 不可信因子 可信度 模型 |
Improved Trust-degree Model for PKI |
| |
| ZHANG Ming-de
,
ZHENG Xue-feng
,
LV Shu-wang.Improved Trust-degree Model for PKI[J].Mini-micro Systems,2012,33(2):370-375. |
| |
| Authors: | ZHANG Ming-de ZHENG Xue-feng LV Shu-wang |
| |
| Affiliation: | 1(School of Computer and Communication Engineering,University of Science and Technology Beijing,Beijing 100083,China) 2(State Key Laboratory of Information Security,Beijing 100039,China) |
| |
| Abstract: | In order to enhance accuracy of trust evaluation on subscribers(or key holders) by relying party,an improved trust-degree model for PKI is proposed.Through the introduction of key security period(KSP) and optimizing non-trust factor(NTF),the trust degree between certificate and private-key is clearly distinguished with the corresponding calculating formulas proposed.Meanwhile,the calculating methods for combined key trust degree and average key trust degree are given herein.This model integrates several critical factors that influence trust degree of certificate and private-key into one single formula,thus providing better adaptability to a variety of PKI trust models as well as sound calculating basis for improving the accuracy of trust evaluating on subscribers. |
| |
| Keywords: | PKI key security period(KSP) non-trust factor(NTF) trust degree model |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
