摘要
使用PKI (Public Key Infrastructure)技术,可以解决网络中用户身份鉴别和不可抵赖性问题,但对于远端主机与代理服务器之间的相互身份认证却不能很好地解决。本文定义了一个代理证书和运转模型,允许全部授权和部分授权并且具有独立于签发者的特点,解决了远端主机与代理服务器的相互认证问题。提高了用户的工作效率和对私钥使用的安全性,为任务批量处理中的身份认证提供了一种全新的解决思想。
The problems of authentication and undeniability can be solved by using PKI(Public Key Infrastructure) technology, but there is still not a good solution to authentication between remote host and proxy server. In this paper, the problem is solved by defining a model and a proxy certificate which can be authorized completely or partly. This paper provides a new idea for the authentication in disposing a batch of tasks, improving the user′s work efficiency and the using security of private key.
出处
《现代电子技术》
2005年第8期7-8,11,共3页
Modern Electronics Technique
关键词
PKI
数字证书
认证
代理服务器
PKI
digital certificate
authentication
proxy server