Analysis And Implementation Of Multi-level Trust Model. Pki,

With the development of information science and technology, electronic commerce and electronic payment is becoming the applying focus, and one of the prerequisites is to construct and transmit the trust relationship in the cyber-space. With the digital certification enacted by CAs, Public Key Infrastructure (PKI) provides a framework to construct and management the trust relationship. The main objective of trust mode in PKI is to link and manage multi-level Certification Authorities. The research of trust mode in PKI has been the hot-pot of PKI technology.This paper analyzes and compares several extant CA-based multi-level trust model, points out their advantages and disadvantages respectively, proposes a new model called Peer to Peer Trust Model, and makes analysis focus on its construction strategy. Chapter 1 is the introduction. Why research focuses on the trust model in PKI and What the trust model in PKI deals with are discussed in it. The background of PKI and implement at home and abroad are introduced in Chapter 2. Several extant CA-based multi-level trust models are analyzed and compared in Chapter 3, and both of their advantages and disadvantages are analyzed. In order to overcome the disadvantages of extant trust models, a new multi-level trust model called peer-to-peer trust model (P2PTM) is proposed and discussed in Chapter 4. Construction strategies of P2PTM in single trust field and among multi trust fields are discussed in Chapter 5 and Chapter 6 respectively. Then conclusions are reached in Chapter 6.The innovations of this thesis are summarized into two points. Firstly, the author proposed the concept of peer-to-peer trust model (P2PTM) that can satisfy the requirement of equality among trust fields in the large-scale distribution systems. With the help of the model's great feasibility and scalability, individual CA or trust field, which want to join or withdraw from the infrastructure, only need to add a path agent (PA) module. Secondly, the author represent the idea that the implement of policies should be combined with the construction of trust paths and be independent with advertising of trust paths. With this idea, the systems conformed to P2PTM can support more complex policies without sacrificing the efficiency.