| 混合信任模型中证书路径构造的研究与实现 |
| |
| 引用本文: | 范文江,王琨.混合信任模型中证书路径构造的研究与实现[J].微机发展,2005,15(3):38-41. |
| |
| 作者姓名: | 范文江 王琨 |
| |
| 作者单位: | 西安电子科技大学计算机网络与信息安全教育部重点实验室,西安电子科技大学计算机网络与信息安全教育部重点实验室 陕西西安710071,陕西西安710071 |
| |
| 摘 要: | 分析研究了X.509和RFC3280中一些证书扩展项与目录属性在证书路径构造过程中的应用,这些证书扩展项与目录属性包括KeyIdentifier,CertificatePolicy,AIA,SIA,pkiPath,issueToThisCA和issueByThisCA等。提出了一个在混合信任模型下证书路径构造实现方法,并且分析了其优越性。文中的方法充分利用了证书扩展项与目录属性,可以有效、快速地构造证书路径。该方法可应用于不同PKI信任域中各CA的相互认证。
|
| 关 键 词: | 证书扩展项 目录属性 证书路径构造 |
| 文章编号: | 1005-3751(2005)03-0038-04 |
| 修稿时间: | 2004年7月5日 |
Research and Realization of Certificate Path Construction in Mixed Trust Model |
| |
| FAN Wen-jiang,WANG Kun.Research and Realization of Certificate Path Construction in Mixed Trust Model[J].Microcomputer Development,2005,15(3):38-41. |
| |
| Authors: | FAN Wen-jiang WANG Kun |
| |
| Abstract: | The usage of some certificate extensions and directory attributes of X.509 and RFC3280 in building of certificate path is analyzed.The extensions and attributes include Key Identifier,Certificate Policy,AIA,SIA,pkiPath,issueToThisCA and issueByThisCA and so on.Then,a certificate path construction method is proposed in mixed trust model,and analyze the advantage of the method.The method takes advantage of certificate extensions and directory attributes,and constructs certificate path efficiently.The method can be used to authenticate between CAs in the different PKI trust domains. |
| |
| Keywords: | certificate extensions directory attributes certificate path construction |
| 本文献已被 CNKI 维普 等数据库收录! |
|
