摘要
证书作废信息的分发是限制公钥基础设施大规模部署的一个重要因素 .回顾了主要的证书作废信息分发方案 ,结合对等网技术 ,提出一个新的证书作废信息分发方案 .新方案大大降低了目录服务器的性能瓶颈和单点失效的风险 。
The distribution of certificate revocation information is the most important factor of restricting the deployment of large-scale PKI. Certificate revocation schemes were reviewed firstly, and then a new certificate revocation information distribution scheme based on peer-to-peer technology was presented. The new scheme reduces the performance bottleneck and single point failure of directory server greatly, and shortens the period of distributing certificate revocation information.
出处
《华中科技大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2003年第S1期190-192,共3页
Journal of Huazhong University of Science and Technology(Natural Science Edition)
基金
国家自然科学基金资助项目 (6 0 2 0 30 0 4 )
中国博士后基金资助项目 (2 0 0 30 3315 5 )
关键词
公钥基础设施
对等网
证书作废列表
在线证书状态协议
public key infrastructure
peer-to-peer
certificate revocation list
online certificate status protocol
