|
|||||
|
|
| 基于代理的公钥密码应用系统设计 | |
| 引用本文: | 李东风,魏明欣,李伟平.基于代理的公钥密码应用系统设计[J].信息安全与通信保密,2011,9(9):72-73,77. |
| 作者姓名: | 李东风 魏明欣 李伟平 |
| 作者单位: | 1. 北京大学电子政务研究院,北京,100018 2. 吉林省政府发展研究中心,吉林长春,130021 3. 长春吉大正元信息技术股份有限公司,吉林长春,130012 |
| 基金项目: | 国家科技支撑计划资助项目 |
| 摘 要: | 传统的公钥密码技术应用模式因为需要在客户端完成大量复杂的密码计算,导致难以在计算能力弱的环境中应用。数字证书由于在应用过程中要与认证机构通信,以取得证书撤销列表、证书链或在线验证证书的有效性,严重影响了公钥密码技术的应用与推广。文中提出的基于代理的公钥密码应用支持模型中,密码计算和通信通过代理服务完成,客户端仅需发送标准的公钥密码应用请求并接收响应,有效简化了公钥密码技术的应用。 |
| 关 键 词: | 公钥密码技术 证书应用 代理 多证书支持 |
Design of Proxy-based Public Key Cryptographic Application System |
|
| LI Dong-feng,WEI Ming-Xin,LI Wei-ping.Design of Proxy-based Public Key Cryptographic Application System[J].China Information Security,2011,9(9):72-73,77. | |
| Authors: | LI Dong-feng WEI Ming-Xin LI Wei-ping |
| Affiliation: | LI Dong-feng1,WEI Ming-Xin2,LI Wei-ping3 (1Research Institute of e-government,Peking University,Beijing 100018,China,2JiLin Provincial Government Development and Research Center,Changchun JiLin 130021,3JiLin University Information Technologies Co.Ltd,Changchun JiLin 130012,China) |
| Abstract: | As considerable quantities of complex cryptographic computation should be done on client side in the traditional public key cryptosystems,it's difficult for the PKI technology to be used in the special case with weak computation capability. In addition,the communication between digital certificate and authentication is required,thus to obtain the CRLs as certificate chain and verify the validity of online certificate,this would greatly reduce the application and development of public key cryptographic technology. In the proposed proxy-based application model,the computation and communication are completed via the proxy service,and the client just needs to send standard application request and accept the corresponding response,thus effectively simplifying the application of public key cryptography. |
| Keywords: | public key cryptography certificate application proxy multi-certificate support |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! | |