摘要: 虚拟专用网络(VPN)中的IPSec协议不能解决通信各方的身份认证问题。为此,在VPN中引入PKI认证技术,描述PKI在VPN中的应用,包括身份认证、密钥管理和访问控制3个方面,给出PKI在VPN中的配置模型与功能模型,并对VPN用户数字签名的实现过程进行分析。
关键词:
虚拟专用网络,
公开密钥基础设施,
IPSec协议,
数字签名
Abstract: IPSec protocol in Virtual Private Network(VPN) can’t validate the user’s identification by its weak identity authentication. This paper introduces the Public Key Infrastructure(PKI) technology into VPN, describes the application of PKI in VPN, including identity authentication, key management, access control. It gives the configuration model and function model of PKI, and analyzes the implementation of VPN user’s digital signature.
Key words:
Virtual Private Network(VPN),
Public Key Infrastructure(PKI),
IPSec protocol,
digital signature
中图分类号:
张小波, 程良伦. PKI在虚拟专用网络中的应用[J]. 计算机工程, 2011, 37(15): 113-115.
ZHANG Xiao-Bei, CHENG Liang-Lun. Application of PKI in Virtual Private Network[J]. Computer Engineering, 2011, 37(15): 113-115.