Research Of Cross-Border Certification System Based On Lattice Theory

Aiming at to the problems and defects of the existing authentication system,a lattice-based and cross-domain authentication new model is proposed.First of all,the model constructs the trusting domain alliance and the user alliance on two-dimensional coordinate based on lattice theory,and the each other containning double authentication mechanism is proposed,then it avoids the drawbacks of central controlling type.Second, absorbing the advantage views that exist in the present authentication syste,the integrity of the model is proposed,an open and free cross-domain trusting authentication platform as well as single-on mechanism is designed,detailed work flow,rules, layouting field and expansion algorithm for this new model,and a identity-based coursed login transmission protocol are designed to protect the identity information and privacy of users.The PKI-based CA the static trust mechanism can not meet for the dynamic collaboration and uncertainty environmental,and so on.Based on trust-model and ontology of the dynamic characteristics(as a description of the concept and the concept relationship between the conceptual model,not only it has a static nature,but also has dynamic),we propose a description that the ontology is used in the dynamic trust-model, and give a trust ontology algorithm strategy and algorithm of building a dynamic model,At the same time,the inter-domain certificate path construction is a very complex process in multi-domain authentication technology of the PKI.In addition they are time-consuming and make cross-domain certificate path construction inefficiently.We propose a grid-based multi-domain authentication trust path algorithm,whitch based on the partial order computing of grid.The different of the partial order computing achieves the different trust domain certification path selection.As an example,the muster computing,we proposed a inter-domain certificate path construction algorithm.The greatest advantage of it is its time complexity is reduced by two orders of magnitude compared with the certificate path table algorithm,and lower one order of magnitude compared with the adjacency construction matrix algorithm.Finally,we set up a open password system,that use grid computing and password system of relation group,safety between public password system and public key cryptography system is proposed,which realizeded the anonymity of main body in visit resources. The model has a good reality,dynamic adaptability,anti-aggressive,fairness, convergence and the calculation and the large expansion of space,which is proved by the experiment and analysis.Cross-domain authentication trust path selection algorithm is efficient and the password system has a high security and confidentiality.