摘要
XML密钥管理规范XKMS降低了客户端部署PKI的复杂度,为网络应用提供了可以互操作的安全基础设施。分析了目前XKMS不能取代传统PKI的原因,给出了基于XKMS的PKI系统设计方案及XKMS服务端的具体实现过程,并且在深入分析系统安全性的基础上提出了系统的优化方案。该系统具有跨平台可移植性、可扩展性和安全性等优点。
XML key management specification (XKMS) lowers the complexity of deploying PKI in client, and provides an interoperable security infrastructure for the network applications. Why XKMS can't substitute for the traditional PKI now is analyzed, and PKI system design scheme based on XKMS and the concrete implementation of XKMS service are given. Based on analysis of the system security, a system optimizing scheme is put forwards. The system has many advantages such as cross-Platform portability, extensibility and security.
出处
《计算机工程与设计》
CSCD
北大核心
2006年第18期3335-3337,共3页
Computer Engineering and Design
基金
国家自然科学基金项目(90204015)
河南省科技计划公关基金项目(052422044
0624260017)。
