摘要
认证机构CA是PK I的核心执行机构,是PK I的主要组成部分,本文简要介绍了PK I的基本组成和CA的架构设计,详细介绍了用Java和O penSSL构建一个小型PK I系统的方法.该PK I系统扩展后可满足一定的安全需求,可用于校园网安全和企业安全应用,能实现CA认证中心的功能,保证网上数据传输的机密性、完整性和不可否认性.
Certificate authority is the core and important part of PKI. This thesis introduces basic structure of PKI and structure of certificate authority simply. Then introduces a method to build a mini CA with Java and OpenSSL. The CA system perfected would satisfy requirement of some security level. It can be used in security of campus network and enterprise applications. It can realize the function of certificate authority, guarantee the confidentiality, integrality and undeniable operation of data transfered by network.
出处
《北京工商大学学报(自然科学版)》
CAS
2006年第5期41-45,共5页
Journal of Beijing Technology and Business University:Natural Science Edition
