Multi-level security scheme of CA private key protection

Computer Engineering and Applications ›› 2011, Vol. 47 ›› Issue (18): 109-111.

• 网络、通信、安全 • Previous Articles Next Articles

Multi-level security scheme of CA private key protection

YIN Hua

College of Mathematics and Computer Science，Gannan Normal University，Ganzhou，Jiangxi 341000，China

Received:1900-01-01 Revised:1900-01-01 Online:2011-06-21 Published:2011-06-21

一种CA密钥的多级安全保护方案

尹华

赣南师范学院数学与计算机科学学院，江西赣州 341000

Abstract

Abstract: A multi-level protection mechanisms of CA（Certificate Authority） private key is proposed for its high-security needs.The key is generated using the RSA algorithm，then the CA private key is distributed to signature servers with （t，n） secret sharing，and the private key sharing is periodically updated using the proactive secret scheme.The recovery and verification of the key are also carried，and a phased-based RSA signature mechanism is used.Multi-level security protection mechanism is used to enhance the security of the CA key.At last，Java and Open SSL are adopted to realize it.

Key words: security, private key protection, private sharing

摘要： 针对CA密钥的高安全性需求，提出一种多级的保护机制。使用RSA算法产生密钥，采用(t,n)秘密共享将其分发到t个签字服务器，用异构平台存储密钥份额，并使用主动式秘密技术周期性更新密钥份额，对密钥份额进行恢复和有效性验证。设计了分阶段签字方案，多级安全保护机制有效地增强了CA密钥的安全性。通过Java和Open SSL对方案进行了实现。

关键词: 安全性, 密钥保护, 密钥份额

YIN Hua. Multi-level security scheme of CA private key protection[J]. Computer Engineering and Applications, 2011, 47(18): 109-111.

尹华. 一种CA密钥的多级安全保护方案[J]. 计算机工程与应用, 2011, 47(18): 109-111.

[1]	SHENG Jianhui, FAN Yinting, XIA Minjie. Physical Layer Security Performance Analysis for Wireless Sensor Network [J]. Computer Engineering and Applications, 2021, 57(8): 91-95.
[2]	WANG Zhendong, ZHANG Lin, LI Dahai. Survey of Intrusion Detection Systems for Internet of Things Based on Machine Learning [J]. Computer Engineering and Applications, 2021, 57(4): 18-27.
[3]	HUI Hui, GOU Bo, WANG Ying. Secure Transmission Scheme for Successive Relaying Networks Under Eavesdropping Environment [J]. Computer Engineering and Applications, 2021, 57(4): 77-82.
[4]	GAO Jian, SUN Yi, WANG Runzheng, YUAN Deyu. Research on Mining Detection Model of Browser Based on Machine Learning [J]. Computer Engineering and Applications, 2021, 57(22): 125-130.
[5]	ZOU Jianwen, ZHAO Bo, LI Xiang, LIU Yifan, LI Jiayue. tPUF-Based Security Access Scheme for IoT Devices [J]. Computer Engineering and Applications, 2021, 57(2): 119-126.
[6]	CAO Lei, LI Zhanbin, YANG Yongsheng, ZHAO Longfei. Intrusion Detection Method Based on Two-Layer Attention Networks [J]. Computer Engineering and Applications, 2021, 57(19): 142-149.
[7]	YANG Shu, SU Fang. Distributed Data Security Integrated Application System Based on Microservices [J]. Computer Engineering and Applications, 2021, 57(18): 238-247.
[8]	SONG Shijie, CHEN Kaiyan, ZHANG Yang. Security Evaluation Framework of Deep Learning Side Channel Analysis from Information Entropy [J]. Computer Engineering and Applications, 2021, 57(17): 138-146.
[9]	TAN Lijuan, ZHENG Wei, LIU Youlin, FAN Xin, YANG Fengyu. Survey of Airborne Software Test and Verification Methods for Airworthiness Standards [J]. Computer Engineering and Applications, 2021, 57(15): 9-22.
[10]	LIU Jiajia, WU Hao, LI Panpan. Research on Edge Computing Security of Railway 5G Mobile Communication System [J]. Computer Engineering and Applications, 2021, 57(12): 1-10.
[11]	SUN Lianshan, CHEN Xiuting, MA Shengtian. Provenance Sanitization for Indirect Dependencies Based on Uncertain Usage Edges [J]. Computer Engineering and Applications, 2021, 57(1): 126-133.
[12]	CHEN Feihong, ZHANG Feng, CHEN Junning, WU Xiulong. Lightweight RFID Authentication Protocol Based on RRAM PUF [J]. Computer Engineering and Applications, 2021, 57(1): 141-149.
[13]	ZHANG Zhongxia, WANG Mingwen. Survey on Blockchain Wallet Scheme [J]. Computer Engineering and Applications, 2020, 56(6): 28-38.
[14]	XU Xinjian, QIU Runhe. Physical Layer Security of Cognitive Relay Network [J]. Computer Engineering and Applications, 2020, 56(6): 79-85.
[15]	YE Qisong, DAI Xuchu. State of the Art on Adversarial Example Generation Methods for Attacking Classifier [J]. Computer Engineering and Applications, 2020, 56(5): 34-42.

Multi-level security scheme of CA private key protection

一种CA密钥的多级安全保护方案

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics