A PKI is a pervasive security infrastructure whose sevices are implemented and delivered using public key concepts and techniques. The system provides the necessary services of confidentiality, integrity, authentication and non-repudiation for e-commerce by the standard API. As a identity authentication system, PKI provides the dependable security guarantee for network application. However, the realization of PKI is faced with many complicated problems such as certification management, validity, revocation, cross certification etc.In 1984, IBE(Identity-based Encryption) concept is introduced byShamir, then a practical IBE scheme is introduced by Dan Boneh andMatt Franklin in 2001 for solving PKI problem. In IBE system anentity's public key is derived directly from its identity information, forexample, telephone, e-mail address or IP address of user. Thecorresponding private key is generated for the user by a trusted thirdparty called key generation center and given to the user though a securechannel. Compared with certificate-based cryptography, IBE isadvantageous in key management, since key distribution and keyrevocation are not required.This dissertation makes researches on PKI and IBE. Main achievements in this paper are summarized as follows:...
|