The Research And Implementation On Threshold Password-Enabled Based Of Intrusion-Tolerant Protect Private Key

With rapid development on the Internet users can easily access the network to many commerce. Keeping the private key secret while providing service on line is very important. In general, the private key store in a dependability server. When user need use private key to work, the dependability server just need authenticate him. However, this scheme is not safety. If the attacker attacks the server, user cannot get the private key and can not process commence on-line.In order to enhance the resilient of on-line service system, this paper analyzes the technical of intrusion-tolerant, threshold cryptograph and verifies share data. The prime work and innovation in below:First: Based on analyze many kind of private key production mechanisms, this paper bring out and argue the scheme of based on threshold intrusion tolerant private key prevent (TTPKP), design an arithmetic protocol about the private key tolerant protect, resolve the problem of simples user management and insufficiency prevent attack, improve the resilience of user private key protect on-line.Second: Based on analyze and integrate the principle of intrusion-tolerant, thepaper design an arithmetic protocol about the private key tolerant protect-EPAKE(Enhance Password-Authenticated Key Exchange) . The scheme can protect userprivate key, meanwhile, and improve the safety of server system on-line, and improvethe resilience of private key authentication, and enhance ability of prevention attack.Third: Based on analyze the principle of intrusion-tolerant and private key prevention, the paper bring out a safety model about threshold password enable intrusion tolerant TTPKP, and describe the protocol definition, and prove the safety and nicety from theoretic, and test the model in windows2000 operate system. The result of test indicate that the safety resilience of scheme on our paper is better than others private key prevent technique by now.The paper design the scheme of based on threshold password-enabled intrusion tolerant and carries out in reality and test the scheme. The result of test indicate that the safety resilience of scheme TTPKP on our paper can meet the safety require of server system on-line. The research production on this paper is, even if compromising up to a threshold number of these servers, the system can still offer server and enhance the user's private key security.