Directory Service is a data-storage technology, which is completely different with DBS, especially in the mode of data-storage, the structure of distributing and the mode of visiting data. Because the DBS cannot meet the requirement of PKI, we use the Directory Service technology to implement the administration of Certificate and Certificate Revocation List for PKI system.There are five chapters in this thesis. Chapter 1 mainly focuses on introducing the concept of Directory Service technology, the characteristic, structure, Access Control List of the Directory Server, and the main popular Directory Servers. Chapter 2 analyses the trait, main functions and application conditions of two main directory visiting technology: LDAP and ADSL Chapter 3 mainly introduces PKI and explains why we cannot use common database system to solve the problem of data storage in PKI. Chapter4 discusses the process of designing directory structure, choosing and configuring the LDAP directory server. Chapter 5 illustrates how to implement easy interface for the C A operation center and client. |