摘要
随着移动商务的快速发展,WPKI成为了关注的重点.由于WPKI的用户量庞大,证书需要频繁更新,所以WPKI必需支持在线的CA.为了提高在线CA的安全性,需要合适的安全容错方案.笔者针对原有容错方案的缺陷和不足,提出了新的面向WPKI的安全容错方案.新方案提供分布式的认证服务,避免了“单点失效”.新方案不仅可以容许外部的入侵,也可以容许内部参与者的不可信,符合实际的网络环境,而且系统提出了密钥恢复机制,提高了整个系统的容错性和强健性.
With the development of mobile commerce, WPKI attracts more emphasis. As WPKI users are very large and WTLS certificates need to he renewed frequently, WPKI has to support on-line CAs. To guarantee the security of CAs, it is necessary to tolerate faults and intrusions. The article brings about a new fault-tolerant scheme about WPKI/CA. The new system supports distributed certification service and avoids single-failure. It can tolerate not only extern intrusions, but also internal fault activities. It would satisfy practical network environment. At the same time, the PK recovery mechanism is proposed. The fault-tolerance and robustness of the whole system is improved .
出处
《浙江工业大学学报》
CAS
2006年第3期242-245,共4页
Journal of Zhejiang University of Technology
基金
浙江省教育厅资助项目(20051397)
关键词
WPKI
安全
认证
容错
强健
WPKI
certification
fault-tolerant
robust