| 对一个私钥保护方案的分析与改造 |
| |
| 引用本文: | 郭曲,何大可.对一个私钥保护方案的分析与改造[J].国际商务研究,2008,48(7). |
| |
| 作者姓名: | 郭曲 何大可 |
| |
| 作者单位: | 西南交通大学信息安全与国家计算机网格实验室,西南交通大学信息安全与国家计算机网格实验室 成都610031,铁通南宁分公司,南宁530001,成都610031 |
| |
| 摘 要: | 在公开密钥密码系统中,用户必须使用私钥才能阅读加密的相关信息,因此私钥的安全有效管理非常重要。《电讯技术》2004年第1期《一种私钥管理实现技术》一文中提出了一种基于PKI的私钥管理实现方案,但在实现过程中不经意让CA无条件解密了"用户"送来的数据,并且返回用户,造成安全隐患。针对这个问题,分析并修改了这个方案,避免直接返回接受数据的"解密"值,保证了系统安全性。
|
| 关 键 词: | 信息安全 PKI CA 私钥保护 |
Analysis and Modification of a Private Key Protection Scheme |
| |
| GUO Qu,HE Da-ke.Analysis and Modification of a Private Key Protection Scheme[J].International Business Research,2008,48(7). |
| |
| Authors: | GUO Qu HE Da-ke |
| |
| Abstract: | In public key cryptosystems,users must use private key to read enciphered information,thus the safe and effect management of private key is very important.The paper "Implementation of Private Key Management"(Telecommunication Engineering,No.1,Vol.44,2004) written by Fang Yong proposed a private key management scheme based on PKI,but in the process of realization,the proposed method uses CA to decrypt the data sent by "users" unconditionally and sends decrypted one back to users,thus leading to hidden safe danger.In this paper the Fang''s scheme is analysed and a modified scheme is proposed which avoids sending the decrypted value of received data back directly,and confirms the security of the system. |
| |
| Keywords: | information security PKI CA private key protection |
|
| 点击此处可从《国际商务研究》浏览原始摘要信息 |
| 点击此处可从《国际商务研究》下载免费的PDF全文 |
|
