Research On CA System Of PKI And Application To The Wireless Digital Radio System

Public Key Infrastructure(PKI)adopt ansymmetry cryptogram algorithm and technology,PKI achieve and provide general security Infrastructure.The purpose of PKI is to make it easy for entities to use public-key cryptography.PKI provides three kinds of services that are valuable to data.Firstly,it provides privacy for data.Secondly, it provides authentication of entities.Finally,it provides integrity for data.This paper first describes the fundaments of PKI,including the knowledge of cryptography,the components of PKI,the services provided by PKI,the structure and standards about PKI.Certificate Authority is the key component of PKI,which is responsible for issuing Public-key certificates to users.PKI is the data structure which bind the identity of entity with its public key.So next,this paper discussed the design and implementation of certificate authority.Based on the analysis of many CA systems,we have designed and implemented a certificate authority by use of Openssl Software tools,which has the full capability of certificate and key management.This CA system include three essential certificate funtion of CA operation,EVP algorithms library operation and CA extensional operations.Based on Microsoft Windows Developing toolkit VC++6.0,via transfer libeay32.libthe algorithms library from Openssl,I achieved the generation of CA Root Certificate,the generation of REQ file,the generation of Certificate from REQ file and the generation of CRL.This CA system also offered format conversion between PEM and DER,key pair matching test,digital signature and digital verification,RSA algorithms applications.Wireless digital radio networks system is also named DAP system.DAP is the abbreviation of DIG A POINT,which means dig a wireless digital node.Every node is make up of radio,data adapter,computer,GPS and DAP software.DAP system used some ultrashort waves radio network as basis wireless communications infrastructure.At the same time,this ultrashort waves radio network is also the files transport network of the CA system.DAP system is constitute of three or above three nodes which including the leading node.Those nodes formed tree directory networks.This paper introduced the constitutions and functions of the DAP system, analyse system security and function requirements.The realization of this CA system and.the application on certificates answered system security requirements,this CA system became one part of DAP system.Finally we apply CA system of PKI to the DAP system,Certificate Authority solved identity authentication of cipher library with plaintext modality which sent over wireless channel.It achieve secret distributing of files between computers.I achieved the generation of a files grouping symmetry encryptional algorithms and rand key generation tool based on Microsoft Windows Developing toolkit VC++6.0.It provide software cryptography function to amplify secrecy ability of military tactics radios network.It also can make those radios to be wireless digital nodes and command automation terminal.