机构地区: 山东大学网络信息安全研究所
出 处: 《计算机应用与软件》 2006年第4期108-109,122,共3页
摘 要: 阐述了PK I应用系统中数字证书和私钥漫游的必要性和可行性,给出了数字证书和私钥漫游系统的设计方案。该方案提出了证书和私钥漫游系统的两种运行模式:作为独立的系统运行,可以为多个CA颁发的证书和私钥提供漫游服务;与CA认证系统结合在一起,只对本CA所颁发的证书和私钥提供漫游服务。方案详细描述了用户注册、证书和私钥的上传、下载流程以及安全方面的设计。 The necessary and possibility of building a roam system for digital certificates and private keys are set forth. A design for digital certificates and private keys roam system is given. In this design, two kinds of mode for certificates and private keys roam system are proposed. One is a stand alone system which can provide roam service for several CA systems. The other is a system along with a particular CA system which provides service for only one CA system. The process of user enrolling, uploading for certificates and keys, downloading for certificates and keys and the design for security are described at length.