作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2009, Vol. 35 ›› Issue (18): 148-150. doi: 10.3969/j.issn.1000-3428.2009.18.052

• 安全技术 • 上一篇    下一篇

基于依赖图信任模型的证书路径构造方法

徐 蕾,陈 程   

  1. (沈阳航空工业学院计算机学院,沈阳 110136)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2009-09-20 发布日期:2009-09-20

Method for Certificate Path Building Based on Depender Graph Trust Model

XU Lei, CHEN Cheng   

  1. (College of Computer, Shenyang Institute of Aeronautical Engineering, Shenyang 110136)
  • Received:1900-01-01 Revised:1900-01-01 Online:2009-09-20 Published:2009-09-20

摘要: 在现行PKI信任模型的证书路径构造方案中,层次模型证书路径构造对根节点安全性依赖过高,而网状模型路径构造时存在回路。针对上述问题,提出一种新的依赖图信任模型,证明依赖图节点之间有多条路径且没有回路,给出新模型下的证书路径构造方法。实验结果表明,新模型的证书路径构造效率等同于层次模型,安全性与网状模型相近。

关键词: 层次模型, 网状模型, 依赖图模型, 证书路径构造

Abstract: In the current certificate path building schemes of PKI trust model, the following defects exist that the hierarchical model certificate path building has heavy dependence on the security of root node, and the mesh model path building can generate loops. In order to solve the above problems, a new depender graph trust model is proposed which is verified there are many paths between depender graph nodes but no loops, and certificate path building method in the new model is put forward. Experimental results show that the efficiency of the certificate path building of new model is equivalent to that of the hierarchical model, and has similar security comparing to the mesh model.

Key words: hierarchical model, mesh model, depender graph model, certificate path building

中图分类号: