摘要
分析了现有的网格认证框架中存在的问题,提出了一种基于身份的多信任域网格认证模型.该模型以基于身份的PK I为基础,避免了基于传统PK I的认证框架的诸多缺点.同时,该模型提供了跨信任域的双向实体认证功能.模拟试验表明,该认证模型比基于传统PK I的认证框架更轻量、更高效.而且由于该模型可以在多信任域的环境下工作,故而比W M ao提出的只能在单一信任域中工作的认证框架更符合网格认证的实际需要.
We consider the efficient authentication for Grids. We analyze the problems of existing Grid authentication frameworks, and propose an identity-based authentication model for multi-domain Grids. Our model is based on the identity-based PKI so as to overcome the problem of low efficiency and high cost posed by traditional certificate based PKI. Moreover, our model supports cross-domain mutual entity authentication, which is necessary to common Grids consisting of distinct domains. Through simulation testing, it is shown that our model is more efficient and more lightweight than those frameworks based on traditional PKI. It is also shown that due to supporting cross-domain authentication ,our model is more suitable for Grids than framework proposed by W. Mao,which can only work in a single domain.
出处
《电子学报》
EI
CAS
CSCD
北大核心
2006年第4期577-582,共6页
Acta Electronica Sinica
基金
国家自然科学基金(No.60273027No.60503014No.60373039)
关键词
网格
认证
基于身份的公钥密码体制
签密
Grid
authentication
identity-based public key cryptography
signcryption
