摘要
基于身份公钥加密是一种以用户的身份标识符作为公钥的新型加密体制。本文首先介绍基于身份的公钥加密方案(IBE),给出IBE安全加密体制的基本框架结构与工作原理;设计了一个IBE密钥管理方案,实现IBE公钥和私钥的安全分发;提出了一套基于IBE的安全电子邮件系统,开发了一个PKG密钥服务器和Outlook邮件客户端加密插件,并实现IBE密钥管理方案;最后讨论了IBE邮件加密系统的安全问题。
Identity-based encryption (IBE) is a novel type of public key scheme which uses the user's identity as her public key. In this paper, the identity-based encryption is firstly introduced, as well as the basic work framework of IBE present. A key management solution for IBE public and private key issuing is then proposed. At last, an IBE-based secure Email system is proposed which including an IBE key server named PKG and an encryption client plug-in for Outlook. In the proposed Email encryption system, the IBE key management scheme is fully implemented and the security and performance of system are both discussed.