CAJ | 학술논문

随着敏感、机密信息通信的普通化，信息的安全性成为人们关注的焦点，密钥的安全管理是加密信息安全的关键因素。针对现有PKI体系中密钥管理机制的缺陷和目前面临的难题，提出了一种在密钥生成、托管和恢复过程中由用户、n个托管机构、CA共同协作完成的改进方案。该方案能够验证用户托管密钥的真实性并能很好的保护用户私钥的机密性。
수착민감、궤밀신식통신적보통화，신식적안전성성위인문관주적초점，밀약적안전관리시가밀신식안전적관건인소。침대현유PKI체계중밀약관리궤제적결함화목전면림적난제，제출료일충재밀약생성、탁관화회복과정중유용호、n개탁관궤구、CA공동협작완성적개진방안。해방안능구험증용호탁관밀약적진실성병능흔호적보호용호사약적궤밀성。
With the general communication of sensitive and confidential information, information security becomes the focus of people＇s attention. The security of key management is the crucial factor of encrypted information. Considering the current problems and defects in the PKI key management mechanism, the paper raises an improved scheme which involves the collaboration of user, n -escrow institutions and CA in the process of key generation, escrow and recovery. The scheme can verify the authenticity of the escrowed key and protect the confidentiality of the private key.