Study And Design Of A WPKI System

Mobile Electronic Commerce has become the new direction of Electronic Commerce because of its character: convenience and immanence. Mobile Electronic Commerce has experienced the first stage that just offers message service by mobile network, not allows the flowing of capital, and enters into the second stage that can realize paying online. The exchange process in Mobile Electronic Commerce requires building confidentiality,integrity,reliabilityand anti-denity between application system and mobile network. Compared with pure wire network era, people have more requests for information security. PKI (Public Key Infrastructure) is an infrastructure, which is based on public-key cryptography with management policy standard to realize its core applications: certificate and trust relation. PKI is a general platform to provide security service for information management system. WPKI (Wireless PKI) is an integrated security scheme, which can reach the demand of the wireless network. It is the extension of PKI in the range of wireless network, is the basic security infrastructure which has better adaptability, and it will greatly promote the expansion of Mobile Electronic Commerce. How to realize WPKI? There have two methods: Transport Layer and Application Layer. In WAP 2.0 protocol, WPKI can be realized on Transport Layer. But this method has two problems: first, it requires WAP gateway can realize WPKI function. Second, this method may exist some security problem because the information can't be encrypted when it passes the WAP gateway. This paper mainly discusses how to realize WPKI on Application Layer in WAP 2.0 protocol. Based on the basic theory of PKI, its technology standard, and combining the WAP2.0 protocol, this thesis designs a WPKI system, which has implemented its core function, and illustrates its framework and function in detail. In order to adapt the wireless condition, save the resource of hardware, software, and the transmission bandwidth of wireless network, this system introduces the idea of vagile certificate into WPKI. Considering the actual condition of wireless application, thesis adjusts the system in many fields, such as: the certificate application policy, the certificate revocation policy, encryption arithmetic, key manage, client module, and certificate type. By studying and designing WPKI system, it can enrich the cognition of WPKI, improve and perfect its performance in practice. The ultimate goal is to establish a more efficient and more safe network platform for Mobile Electronic Commerce.