摘要
密钥管理是网络安全问题中的关键,具体处理密钥自产生到最终销毁整个过程中的有关问题,包括密钥的生成、备份、存储、使用、交换、更新、销毁等.涉密信息系统的安全保密管理人员包括系统管理员、安全保密管理员和安全审计员。针对密钥管理技术与理论进行分析研究,在梳理密钥管理技术的基础上,给出了CFL认证体制的密钥管理的基本要求.同时分别对国家保密标准中所规定的这3类安全保密管理人员进行研究,分析各自职责.
Key management is the core problem of network system security,which deals with the correlative problems from key being generated toultimately destroyed,it includes keyg eneratio n,key backup,key storage,key usage,key exchange,key renevation,key destruction,and etc.The security and privac y management personnel fo r secret-involved system management personnel,security and privacy management personnel,and security aud it personnel.This thesis aims at the analysis and research on the theoritical and technological key management.On the summary of the key management,the basic requirement about the key management of CFL is given..And analyze the respective responsibilities of these three security and privacy management personnel stipulated in the state security standard.
作者
刘文婷
杜春玲
范修斌
刘纪敏
Liu Wenting;Du Chunling;Fan Xiubin;Liu Jimin(Department of Information Engineering,Shandong University of Science and Technology,Taian,Shandong 271019;Zhongke Guomin Institute of Science and Technolog,Beijing 100086;Beijing Bowen Guangcheng Information Security Technology Limited Company,Beijing 102206)
出处
《信息安全研究》
2016年第7期628-638,共11页
Journal of Information Security Research
