摘要
为提高CA(certification authority)安全认证系统的自身安全性,提出了从物理安全和环境安全、CA系统核心组件安全、证书管理安全和系统安全审计等方面入手,从而构建一个行业级的CA安全认证系统。通过CA自身安全的加强,避免由于自身系统的脆弱性而产生的风险,有效地提高了整个CA系统的安全性、完整性和有效性,从而保证构建在CA系统上各个业务系统的正常运行。该方案在烟草某省实施后,实际运行结果表明该方案切实可行。
A solution to construct the CA (certification authority) security authentication system for the tobacco monopoly enterprises is proposed. This solution addresses the physical and environment securities, the security of core components of CA system, security of certification management, and system audition security, enhances the overall securities of CA security authentication system itself. By strengthening the security of CA itself, the risks caused by the vulnerability of CA are reduced, and the security, integrity and effectiveness of CA system are improved. This solution is used in real tobacco monopoly enterprise, and is proved to be useful and tangible.
出处
《计算机工程与设计》
CSCD
北大核心
2009年第18期4231-4234,共4页
Computer Engineering and Design
基金
浙江省烟草公司嘉兴市公司和嘉兴市烟草专卖局信息化重点建设基金项目(2008XX03)
关键词
CA系统
自安全性
安全认证
证书管理
安全审计
certification authority (CA) system
self security
security authentication
certificate manage
safety audit
