作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2009, Vol. 35 ›› Issue (11): 16-19. doi: 10.3969/j.issn.1000-3428.2009.11.006

• 博士论文 • 上一篇    下一篇

自产生证书的公钥密码系统

郭宝安1,张庆胜1,赖俊祚2,刘胜利2   

  1. (1. 北京航天信息股份有限公司,北京 100097;2. 上海交通大学计算机科学与工程系,上海 200240)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2009-06-05 发布日期:2009-06-05

Public Key Cryptosystem with Self-generated Certificate

GUO Bao-an1, ZHANG Qing-sheng1, LAI Jun-zuo2, LIU Sheng-li2   

  1. (1. Aisino Corporation Inc., Beijing 100097; 2. Department of Computer Science and Engineering, Shanghai Jiaotong University, Shanghai 200240)
  • Received:1900-01-01 Revised:1900-01-01 Online:2009-06-05 Published:2009-06-05

摘要: 提出一种自产生证书的公钥密码系统。在该系统中,用户借助于与可信第三方的交互得到部分私钥。与自己产生的部分私钥进行整合,产生自己的完整私钥和相应的公钥及公钥证书。用户将自己的公钥证书存放在由可信第三方维护的数据库中,并对自己的证书进行维护、上载、更新和销毁。可信第三方虽然协商用户生成自己的私钥,但并不知道用户私钥的值。这种新型的分散式的证书管理方法克服了传统公钥基础架构中由证书机构统一集中进行管理的弱点。

关键词: 公钥密码系统, 证书, 自产生

Abstract: This paper proposes a public key cryptosystem with self-generated certificate. In the system, a user obtains partial private keys from an interaction with a Trusted Third Party(TTP). The user integrates the partial keys to derive a complete private key and the corresponding public key and certificate. The public key certificate is stored by the user in a database run by the TTP. The user is responsible for the management of his own public key certificate, including generation, upload, update, and removal of the certificate. The TTP does not know the private key of the user, even if it is involved in the generation of the partial key. The new system with distributed management of self-generated certificates overcomes the weakness of certificate authority’s integrated management of all certificate in the traditional public key infrastructure.

Key words: public key cryptosystem, certificate, self-genearation

中图分类号: