摘要
基于公共密钥基础设施的PKI理论,在详细阐述相关概念、体系构成与模块功能的基础上,结合PKI身份认证与数字签名加密程序,分析了PKI政策缺限、使用的安全性、实现的合理性等方面的安全缺限,通过权衡网络安全与使用方便、运行速度与加密位数的关系,提出健全法律规范、完善认证标准、增强公钥加密算法、合理采用密钥长度、减少证书生命周期的发展建议。
The related concept, the system structure and each module functions based on the theory of public key infrastructure (PKI) are introduced in detail. Combined with PKI identity authentication and the encryption procedures of digital signature, the shortcomings of PKI policy are discussed and the security shortcomings casued by the limitations of PKI technology are analyzed in terms of the PKI usage and the realization rationality. Based on the relation between network security and convenient usage, operation speed and the encryption digits, the paper made some suggestions on the establishment of the perfect legal norms, the improvement of authentication standard, the enhancement of public key encryption algorithm, the appropriate adoption of the secret key length and the certification life cycle shortening.
出处
《现代电子技术》
2012年第17期83-85,共3页
Modern Electronics Technique
关键词
PKI
公钥技术
电子政务
信息安全
PKI
public key technology
electronic government affair
information security
