With the continuous development of Internet and changing of application based-on Internet, We must give prominence to the security problem of information. When people use Internet to go into business,such as shopping,booking tickets, the important problem that we meet is how to establish the trusty relationship and ensure the authenticity,integrality,confidentiality and non-reputation of the information. The Public Key Infrastructure (PKI) is the key to resolve the series of problem.This thesis began with the Certification Foundations and introduced the format and characteristic of X.509 Certification. Then we analyzed the PKIX system model and introduce the Certificate Management Protocol and then we expatiated the Certification and Key Life-Cycle Flow and correlative technology in detail. We brought forward a model and its realization of CA certificate management system based-on Linux. Contraposed the characteristic of campus network, a management interface based-on Web is realized in this system.In the end of thesis, some applications of certificate are given in the environment of the campus net. |