计算机科学 ›› 2010, Vol. 37 ›› Issue (6): 128-130.
• 计算机网络与信息安全 • 上一篇 下一篇
廖俊国,凌乐真,朱彬
出版日期:
发布日期:
基金资助:
LIAO Jun-guo,LING Le-zhen,ZHU Bin
Online:
Published:
摘要: 在开放式环境中,数字证书常用于身份认证和授权管理。数字证书通常包含一些敏感属性,因此,数字证书中敏感属性的保密研究受到广泛的关注。提出了一种灵活实用的数字证书中敏感属性保密方案,分析了该方案的安全性和性能。在该方案中,数字证书中不同的敏感属性分别用由同一个主密钥生成的不同子密钥进行加密,该方案具有可选择性揭露数字证书中敏感属性、密钥管理简单、时间开销少等特点。以X. 509作为证书格式,实现了该数字证书中敏感属性的保密方案。
关键词: 数字证书,敏感属性,保密,X. 509
Abstract: In open environment, digital certificate is used in identity authentication and authorisation rrmnagement. Digital certificate often includes sensitive attributes, so the research on preserving confidentiality of sensitive attributes in digital certificate becomes concerned. This paper presented a flexible and practical scheme to preserve confidentiality of sensitive attributes in digital certificate, and analysed its security and performance. In the scheme, the different sensitive attributes in digital certificate are encrypted with different sub-keys generated from a main key. The scheme has some characteristics as follows; selectively disclosing sensitive attributes in digital certificate, simple key management, and low time cost. Based on X. 509,the presented scheme was implemented.
Key words: Digital certificate, Sensitive attribute, Preserve confidentiality, X. 509
廖俊国,凌乐真,朱彬. 一种灵活实用的数字证书中敏感属性保密方案[J]. 计算机科学, 2010, 37(6): 128-130. https://doi.org/
LIAO Jun-guo,LING Le-zhen,ZHU Bin. Flexible and Practical Scheme to Preserve Confidentiality of Sensitive Attributes in Digital Certificate[J]. Computer Science, 2010, 37(6): 128-130. https://doi.org/
0 / / 推荐
导出引用管理器 EndNote|Reference Manager|ProCite|BibTeX|RefWorks
链接本文: https://www.jsjkx.com/CN/
https://www.jsjkx.com/CN/Y2010/V37/I6/128
Cited