摘要
在PKI(public key infrastructure),IBC(identity-based cryptography),CFL抽象工作流程的基础上,从用户工作公钥与中心的独立性、用户信息的功能、标识即公钥的产生方式方面、一人一密、单兵识别、中心可信根的安全强度、用户工作与被证明的隔离、应用中的自组织能力、个人隐私保护、计算速度、应用环境、支持进程级认证、建设成本和能耗等方面对PKI,IBC,CFL进行了比较研究,清晰给出了CFL的特点.
Based on the abstract workflow of PKI,IBC and CFL,this paper makes the comparative research of PKI,IBC and CFL,from the independence between user’s working key and center’s key,the function of the user’s information in certificate,the production methods to identity as public key,one person one private key,individual identification,security degree of center,isolation between user’s work and it’s entity being proved,self-organization ability in application,protection of personal privacy,computing speed,application environment,program being authentication,cost of the building and being used,then the Properties of CFL are given clearly.
作者
范修斌
王玟
孙海东
王海平
王建荣
Fan Xiubin;Wang Min;Sun Haidong;Wang Haiping;Wang Jianrong(Zhongke Guomin Institute of Science and Technology,Beijing 100086;Beijing Bowen Guangcheng Information Security Technology Limited Company,Beijing 102206;Institute of Applied Mathematics,Xinjiang University of Finance and Economics,Urumchi 830012;Shanghai Yihua Information Security Technology Limited Company,Shanghai 200050;School of Computer&Communication Engineering,University of Science and Technology,Beijing 100083)
出处
《信息安全研究》
2016年第7期600-607,共8页
Journal of Information Security Research
关键词
认证体制
PKI
IBC
CFL(Chen
Fan
and
Lü)
一人一密
authentication system
public key infrastructure(PKI)
identity-based cryptography(IBC)
CFL(Chen,Fan,and Lu)
one person one private key
