吉林大学学报(理学版)
吉林大學學報(理學版)
길림대학학보(이학판)
JOURNAL OF JILIN UNIVERSITY(SCIENCE EDITION)
2010年
1期
89-93
,共5页
孟欣%胡亮%初剑峰%林海群%刘博超
孟訢%鬍亮%初劍峰%林海群%劉博超
맹흔%호량%초검봉%림해군%류박초
基于身份加密(IBE)%公开密钥基础构架(PKI)%异构信任域%跨域授权
基于身份加密(IBE)%公開密鑰基礎構架(PKI)%異構信任域%跨域授權
기우신빈가밀(IBE)%공개밀약기출구가(PKI)%이구신임역%과역수권
identity based encryption (IBE)%public key infrastructure (PKI)%heterogeneous trustworthy domains%cross-domain authorization
针对跨IBE(基于身份加密)和PKI(公开密钥基础构架)异构域可信互联, 提出一种实现跨域授权的解决方案. 该方案将PKG和CA作为各自域T_(PKG)和T_(CA)内用户的代理, 并把它们注册到对方域内成为特殊用户Client_(PKG)和Client_(CA), 借助映射后的Client_(PKG)和Client_(CA)构成跨异构域信任链, 真实、客观地实现了PKI和IBE域内任意用户的跨域授权.
針對跨IBE(基于身份加密)和PKI(公開密鑰基礎構架)異構域可信互聯, 提齣一種實現跨域授權的解決方案. 該方案將PKG和CA作為各自域T_(PKG)和T_(CA)內用戶的代理, 併把它們註冊到對方域內成為特殊用戶Client_(PKG)和Client_(CA), 藉助映射後的Client_(PKG)和Client_(CA)構成跨異構域信任鏈, 真實、客觀地實現瞭PKI和IBE域內任意用戶的跨域授權.
침대과IBE(기우신빈가밀)화PKI(공개밀약기출구가)이구역가신호련, 제출일충실현과역수권적해결방안. 해방안장PKG화CA작위각자역T_(PKG)화T_(CA)내용호적대리, 병파타문주책도대방역내성위특수용호Client_(PKG)화Client_(CA), 차조영사후적Client_(PKG)화Client_(CA)구성과이구역신임련, 진실、객관지실현료PKI화IBE역내임의용호적과역수권.
There still exist two problems in the trustworthy interconnection of heterogeneous domains between IBE (Identity Based Encryption) and PKI (Public Key Infrastructure);one is cross-domain authorization, the other is mobile identity. In view of the above mention facts, the authors put forward a solution scheme of the cross-domain authorization among heterogeneous trustworthy domains. In this scheme, PKG (Private Key Generator) is regarded as the agency by its users to register in the PKI domain. Meanwhile CA (Certificate Authority) is regarded as the agency by its users to register in the IBE domain. Therefore, this kind of cross-domain authorization has intact trustworthy links. Finally, conclusion can be drawn that this scheme is fair for users in both PKI domain and IBE domain to cross-domain authorize by analyzing intact trustworthy links.