摘要
介绍了目前证书管理中状态确认的主流机制CRL ,OCSP ,CRT等 ,从实效性、可用性、可控性等方面分析了各种机制的优缺点 ,提出并分析了证书状态确认机制的互操作的架构 .并给出基于移动代理 (MA)技术实现证书状态确认机制灵活、透明的互操作运行模型 ,描述了异构分布系统、工具集、应用集的三层结构 ,定义了工具层各个模块的功能和作用 ,通过开放技术Java ,CORBA等实现系统的良好灵活性和互操作性 .最后描了述系统应用模型 。
Certificate status validation-CSV is a crucial process for the certificate application in PKI. This article introduces most popular CSV mechanisms such as CRL, OSCP, CRT and analyzes their advantages and disadvantages with aspects of timeliness, availability, scalability. A framework was given to achieve the interoperability of CSVs. This article presents a running model to achieve flexible and transparent interoperability of CSVs based on the technique of mobile agent (MA). Three-layer structure that consi...
出处
《华中科技大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2003年第S1期211-213,共3页
Journal of Huazhong University of Science and Technology(Natural Science Edition)
