| With the rapid development of information technology and network technology, people’s life in the event of a huge change, the traditional way of shopping, office, gradually replaced by electronic commerce, electronic government affairs and all kinds of trade network, the network information platform arises at the historic moment, convenient, quick and efficient way to attract the masses of users, everyone enjoy the network brings the perfection of life. But, suddenly one day, someone found themselves on the Internet of the money in the account stolen, and news reports that the network is an important way of promoting the foreign spies to steal secret information in our country, this time everybody panic, started to worry about the network security problems, if cannot leave a network, is there a way to protect network security?Public Key Infrastructure(PKI), called the English Public Key Infrastructure, PKI is based on Public Key theory, is to ensure the safety of large open information under the network environment of the important measures. PKI can protect data confidentiality and integrity, also can realize the user identity authentication, guarantees the non-repudiation of online transactions. In the whole system of PKI, the CA authentication system is its key component, it USES the public key system, the certificate and key binding together, realize the user one-to-one correspondence, certificates and keys.In this paper the research at home and abroad research background and current situation of the development of CA authentication system, on the basis of through the analysis of network security and user demand for the CA system, study on the system architecture and design. Include user registration management, the creation of certificate/certificate of cancellation list and update, certificate, certificate issued status query, storage and release of certificate/certificate of cancellation list, etc., provides the certificate, key process, omni-directional, the whole life cycle management. In system design and implementation of each function module in the process, adopts the design method of the components, reduces the coupling between the various modules, easy to understand, at the same time, namely improve the maintainability of the system, and enhance the scalability of the system. The CA authentication system design can be applied in the field of e-government and e-commerce, financial industry, used to provide authentication, to ensure that the information transmission of confidentiality, integrity, authenticity and non-repudiation, provide reliable security services to application system. |
PDF Full Text Request