| Nowadays, Public Key Infrastructure is becoming a hot spot for researching. This thesis focuses on improving the security of certification authority, the kernel of a public key infrastructure system, by intrusion tolerance, and introduces the achievement on establishing The State Key Laboratory Of Information Security -- Minimum Interoperability Specification for PKI Components - Draft.The first chapter introduces some background knowledge about public key infrastructure and the project's research background. The second chapter mainly introduces our design of intrusion tolerance certification authority, and deals with the introduction of intrusion tolerance technology and the extant design of intrusion tolerance certification authority.The third chapter mainly introduces the significance and content of The State Key Laboratory Of Information Security -- Minimum Interoperability Specification for PKI Components - Draft. The implementation of certification authority will be compatible with this draft.The fourth chapter discusses the implementation of intrusion tolerance certification authority. We use the object-oriented programming method to implement an intrusion tolerance certification authority. The certification authority is perfectly interoperable.At last, works of the thesis is summarized. |
PDF Full Text Request