Based Certificate Authority Public Key Cryptosystem To Achieve

With the development of Internet, more and more people carry on commercial affairs and the service activities through Internet. Network security is being increasingly concerned the insecure nature of the TCP/IP protocol. Most settlement schemes, such as the S/MIME, baseding on application layer, the SET according as the e-commerce, the SSL existing in the application layer and the transport layerlayer and the IPSec belonging to the network, are all based on the public key encrypting technology unexceptionally. Nowadays the secure infrastructure - PKI , which is based on the public key encrypting system and combines many other technologies, such as digital certificate and digital signature etc, plays an important role in the information system, which is the key content in this paper.A Certification Authority (CA) is not only a PKI service provider but also the cornerstone of whose business is certificates, specifically X.509 certificates. So-called CA is a legalized authoritative organization that can be trusted. And it take charge of providing and managing the electronical certificate and makeing the identity affirmed for the each side of communication on the net respectively.My task is about the analysis and implementation of certificate authority based on PKI. It is based on the scientific research projet SQY15 which is a system of hospitalization insurance and information security for IluNan province. The thesis have not limited on this projet entirely but done summary, comparison and research some correlative technologies in dfferent extent. The system of PKI was introduced in the thesis briefly. It has been discussed the CA system on the design, realization and security and researched some critical technologies like LDAP and so on detailedly and thoroughly. Besides, a design and implementation of the prototype system for CA have been finished, which is including the main course of the software realization.The authorities have already authorized this CA system. It will be applied to the practical application. By way of appraising, the CA system is provided with the major functions that the certificate authority needed presently. The CA system are not only steady and credible but also simply and practical, also better satisfied the real requirement and achieved the expected design requirement.The CA system will be still improved to adapt the developing need of the upgrade to the system regularly.