| Public Key Infrastructure (PKI) has been used in trades,government departments and military institutions. The security of PKI directly affects the benefit of commerce and users,even the whole state. The authoritative test and evaluation will give PKI the basic security assurance. According to Common Criteria (CC),this thesis describes the research of the derived test on the security function of PKI.PKI is a new product with complex security functions and its test methods are far from mature. This thesis studies the following several important aspects of PKI derived test:Through defining convergence,the steps of the analysis to vulnerability that is consistent with Protection Profile/Security Target (PP/ST) are present.On the base of "PKI Assessment Guidelines" and the PP of Certificate Issuing and Management Components (CIMC),the key and certificate life cycle checklist is given for security function tests.On the base of the tools analyzing protocol,the methods are designed to test the function of detecting integrality and recovery in trusted channel without knowing the session key.Some vulnerabilities may be triggered when end users use certificates. On the base of analyzing the vulnerabilities the checklist of the end users' applications is given.The methods mentioned above is effectual in the derived test of PKI. |
PDF Full Text Request