The Design And Implementation Of Chinese Cryptographic Algorithm Certificate Management System

In the past ten years,Chinese secret algorithm system has become more and more mature with the encouragement and policy support of the state.It has been verified that in terms of safety performance the SM2 algorithm applied in the field of digital certificate signature verification is better than the RSA algorithm which is widely used in the world.Meanwhile the SM2 algorithm is faster than the RSA algorithm in terms of data signature and has been supported by domestic banks,transportation industry and many third-party certification institutions.However,according to the survey,the application rate of the SM2 algorithm in the industry is not very high,so that the recognition of the SM2 algorithm in the field of computer and cryptography is lower than that of the RSA algorithm and Chinese secret algorithm system has not been widely used in our country.In addition,with the development of domestic third-party certificate institutions,the internal management of digital certificates relies on the third-party institutions but too much.In the enterprise,every time the operation of the acquired certificate needs to log on to the third-party organization platform,not only the operation process is tedious,but also the service response is very slow,and the description of the certificate related information is not easy to understand.Such work will kill the patience of the internal and service users,and cause great obstacles to the management of the internal digital certificate of the enterprise.In view of the above factors,on the one hand the design and implementation of Chinese cryptographic algorithm certificate management system can implement that enterprises will not rely too much on the third-party institutions when using the digital certificates provided by the third-party institutions and can easily manage the acquired certificates.On the other hand,mark the SM2 certificate and the RSA certificate when applying for certificates,and support operations such as applying and downloading the domestic algorithm certificate,at the same time do not support operation of the RSA certificate,and then popularize the application of Chinese secret algorithm Certificate in various industries in China.This thesis mainly describes the design and implementation of Chinese cryptographic algorithm certificate management system which will be able to solve the two disadvantages mentioned above.The main work of this system is to manage the certificates acquired from the third-party institutions.According to this main purpose,generate a series of Ancillary work such as the management of certificate storage media,a series of batch timing tasks,the export of certificate files and the log recording of various services.From the point of view of system design and implementation,this thesis emphasizes the system's requirements analysis,design and implementation,and system test after a brief introduction of the design purpose and related technologies of the system.Case figures,flow chart,activity diagram and entity-relationship diagram are used to explain the function module,process and the relationship between entities in the system while analyzing requirements of this system.Flow chart,static class chart and dynamic sequence diagram are mainly used to explain the design flow,system static class structure and dynamic interface relationship while describing the design and implementation of the system.After the completion of the design and implementation of this system,a comprehensive functional test and non-functional test are carried out to verify whether the system can complete all the items in this system requirements.The system test is discussed below in this thesis.Firstly,design the detailed test case for each module,and then test this system purposefully according to the test case to ensure that the test coverage is comprehensive,finally the screenshots of the test results are given to ensure the reliability of the test.After the completion of the related work of system design and implementation,this thesis summarizes and analyzes the links from system design and implementation to test and the achievements of the system and the deficiencies in the system,and makes a prospect for the future application of this system.The design and implementation of this system can successfully complete the purpose of the system requirements,can help enterprises properly manage the digital certificates acquired from the third-party institutions,and restrict the acquisition of domestic SM2 certificates from the third-party institutions.The original intention of this system design has been achieved,and the functional modules in the system requirements can be fully implemented.Through the system test,the convenience of enterprises managing the third-party organization's digital certificate has been greatly improved.The problem of frequent login and long waiting has been successfully eliminated.The one-stop management of the enterprise's digital certificate has been completed,and the work efficiency and certificate management experience of enterprises have been improved.Generally speaking,this system is designed successfully and can be used as a reference for the management certificate of domestic enterprises in the later period.