| 基于PMI的安全匿名授权体系 |
| |
| 引用本文: | 张基温,裴浩. 基于PMI的安全匿名授权体系[J]. 计算机工程与设计, 2007, 28(3): 547-549 |
| |
| 作者姓名: | 张基温 裴浩 |
| |
| 作者单位: | 江南大学,信息工程学院,江苏,无锡,214122;江南大学,信息工程学院,江苏,无锡,214122 |
| |
| 摘 要: | 权限管理设施(privilege management infrastructure,PMI),它为用户提供授权访问控制等方面的管理.针对匿名访问,提出了一种适用于Web/电子商务环境下的基于PMI的匿名授权体系,在此体系中采用匿名属性证书(AAC)授权链.用户完全信任PMI的属性权威AA,以单次授权密钥(OTAK)替换用户认证密钥来标识用户,并提供密钥匿名性撤销管理.
|
| 关 键 词: | 权限管理设施 单次授权密钥 匿名授权 匿名属性证书 密钥绑定证书 |
| 文章编号: | 1000-7024(2007)03-0547-03 |
| 修稿时间: | 2006-01-01 |
Secure anonymous authorization architecture based on PMI |
| |
| ZHANG Ji-wen,PEI Hao. Secure anonymous authorization architecture based on PMI[J]. Computer Engineering and Design, 2007, 28(3): 547-549 |
| |
| Authors: | ZHANG Ji-wen PEI Hao |
| |
| Affiliation: | College of Information Engineer, Southern of Yangtze University, Wuxi 214122, China |
| |
| Abstract: | PMI,which means privilege management infrastructure,provides management of authorization for access control.An anonymous authorization architecture based PMI is presented for E-commerce based web.AAC,anonymous attribute certificate,is adopted to complete the process.In this architecture,AA of PMI is trusted,providing anonymity revocation management.OTAK,one task authorization key,is used to replace identity key for protecting user's identification information. |
| |
| Keywords: | PMI OTAK anonymous authorization AAC KBC |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
