摘要
随着PKI系统在企业中的广泛应用,企业并购活动中必然涉及原有多个PKI系统的整合问题。分析了现有的PKI系统整合方案,在此基础上结合企业并购活动特点,提出了一种新的基于层次型信任模型的整合方案。与现有方案相比,新方案在证书颁发量、整合费用等方面均具有明显优势。为描述清楚,采用形式化方法定义PKI系统的相关概念,并使用类程序语言描述方案的关键步骤。
The Public Key Infrastructure(PKI) can provide various security services in e-commerce. When combine of different companies happens, the multiple PKIs deployed by different companies should be merged. In this paper, first the common merging ways are analyzed. Then considering the specialties of these merging problems, an efficient way based on hierarchy structure is proposed. The new scheme makes a small change of those existing PKIs and issues a few certificates. The reconstruction process is quick and low cost. After merging, the new PKI can not only make an efficient path construction and validation but also fit for the enterprise management. In addition, some conceptions used in PKI have also been formalized in order to describe the scheme clearly.
出处
《计算机应用研究》
CSCD
北大核心
2006年第3期89-91,共3页
Application Research of Computers
基金
国家"973"计划资助项目(G1999035804)
国家自然科学基金资助项目(90204015
19931010)
