Hierarchical organization of certification authorities for secure environments
暂无分享,去创建一个
The paper presents a model of hierarchical organization of certification authorities which can be applied to any open system network. In order to study the feasibility of the proposed model, a pilot experiment within a university environment is being carried out. The authors have developed an application which provides the users with security services using X.509 certificates. The authors have also developed a security server to provide RSA keys and management of certificates. The hierarchical infrastructure that is being created needs a multi-level policy which implies the use of various types of documents which are managed by people with different roles. One of the objectives being followed is to formalize the treatment of the information about policy, for which some components of the extensions field of the version 3 certificate have been used and other new ones are proposed.
[1] Nils Harald Berge. UNINETT PCA Policy Statements , 1995, RFC.
[2] Russell Housley,et al. Internet Public Key Infrastructure: Part I: X. 509 Certificate and CRL Profile , 1999 .
[3] Adi Shamir,et al. A method for obtaining digital signatures and public-key cryptosystems , 1978, CACM.