| With the expeditious development of open-network system and the outstanding security problems, the PKI network security system is widely used. Authentication in the PKI system is mainly achieved by using digital certificate. The security of digital certificate and private key, which is used by end-user, is one of the most'significant problems affecting the entire PKI system.At the same time, smartcard as a convenient, safe and reliable new security product develops rapidly. Because of its inherent characteristics, smartcard has irreplaceable advantages in the security field, especially in the application of identity authentication. Therefore, smartcard, which has independent computing ability and a specific operating system, used as a certificate and private key generating and managing equipment in the PKI system, will greatly enhance system security.According to the situation of our project and the points discussed above, this paper carries out the following tasks: firstly, information security, PKI, authentication and other basic knowledge are introduced; secondly, based on the principles of COS design, our COS program design and implementation under the rules of ISO/IEC7816 international standards are proposed; then, combining with the security architecture of COS, this paper focus on the realization of RSA algorithm in smartcard and the deployment of smartcard-based PKI in the IPSec VPN network, illustrating the application of smartcard in authentication field. |
PDF Full Text Request