Analysis And Design Of CA System For Shanxi Tabocco Co.

Along With the widespread of computer technology and broad application of the Internet, the tide of informatization has whirled the world. Using the modern informatization technology, The enterprise can achieve automation in production, networking in management, intelligence in decision making, and electronization in business operation by deep exploitation and wide use of information resources, While lowers the production cost and increases the efficiency, the enterprise has elevated its market competitiveness. At the same time, due to its publicity and anonymity, the security problem has emerged recently. The information transmissed through the Internet is threaten by various kinds of security risks all the time. The protection of network information has become an issue that can not be ingored. Nowdays,in the field of network information security, PKI/CA technology has been regarded as a mature application and widely used.Being the fundaments of information security, PKI has become a focus of today's computer security research. It has engaged reliable technology to provide authentication and guarantee the confidentiality, integrity and non-repudiation. It provides security services with the basic framework, and gradually becomes the core part of the entire security architecture. PKI is based on public key encryption system and integrates the digital certificate and digital signature. CA authentication system is core components of PKI; It is standardized on a series of protocols and regulations, and it combines the user's public key and identification information, and then assigns user's certificate. The certificate is applied to guarantee the validity and security of user's internet activity.This thesis is exactly directed against problem described above, regarding the current network situation of business information system for Shanxi tabacoo Co. as the main researching object. Do research, planning, and designing on construction of CA system for Shanxi tabacoo Co..This article describes following parts:1. Introduce the project background of CA system for Shanxi tabacoo Co., put forward the construction requirements of CA system.2. Analysis the security requirements of CA system for Shanxi tabacoo Co., and put forward the overall planning and design of CA system for Shanxi tabacoo Co..3. Elaborate the constructive plan for the three components of CA system—Certificate Authority Server(CA Server),Registration Authority Server(RA Server),Key Management Centre(KMC). And focus on the application,registration,downloading,updateing and revocation of the certificate plus the security of key's generation and management.4. Design for the CA system's management and security.5. Analysis the problems that exist in the application systms, which is based on B/S and C/S structures in the business information system for Shanxi tabacoo Co., and put forward the idea of reformation and solutions. Futhermore, introduce other safe implementation of certificate.