J4 ›› 2010, Vol. 48 ›› Issue (1): 89-93.

• 计算机科学 • 上一篇    下一篇

异构信任域的跨域授权

孟欣, 胡亮, 初剑峰, 林海群, 刘博超   

  1. 吉林大学 计算机科学与技术学院, 长春 130012
  • 收稿日期:2008-12-09 出版日期:2010-01-26 发布日期:2010-01-27
  • 通讯作者: 胡亮 E-mail:hul@mail.jlu.edu.cn.

The CrossDomain Authorization of HeterogeneousTrustworthy Domains

MENG Xin, HU Liang, CHU Jianfeng, LIN Haiqun, LIU Bochao   

  1. College of Computer Science and Technology, |Jilin University, Changchun 130012, China
  • Received:2008-12-09 Online:2010-01-26 Published:2010-01-27
  • Contact: HU Liang E-mail:hul@mail.jlu.edu.cn.

PDF (PC)

432

摘要:

针对跨IBE(基于身份加密)和PKI(公开密钥基础构架)异构域可信互联, 提出一种实现跨域授权的解决方案. 该方案将PKG和CA作为各自域TPKG和TCA内用户的代理, 并把它们注册到对方域内成为特殊用户ClientPKG和ClientCA, 借助映射后的ClientPKG和ClientCA构成跨异构域信任链, 真实、 客观地实现了PKI和IBE域内任意用户的跨域授权.

关键词: 基于身份加密(IBE), 公开密钥基础构架(PKI), 异构信任域, 跨域授权

Abstract:

There still exist two problems in the trustworthy interconnection of heterogeneous domains between IBE (Identity Based Encryption) and PKI (Public Key Infrastructure); one is crossdomain authorization, the other is mobile identity. In view of the above mention facts, the authors put forward a solution scheme of the crossdomain authorization among heterogeneous trustworthy domains. In this scheme, PKG (Private Key Generator) is regarded as the agency by its users to register in the PKI domain. Meanwhile CA (Certificate Authority) is regarded as the agency by its users to register in the IBE domain. Therefore, this kind of crossdomain authorization has intact trustworthy links. Finally, conclusion can be drawn that this scheme is fair for users in both PKI domain and IBE domain to crossdomain authorize by analyzing intact trustworthy links.

Key words: identity based encryption (IBE), public key infrastructure (PKI), heterogeneous trustworthy domains, crossdomain authorization

中图分类号: 

  • TP309.7
版权所有 © 《吉林大学学报(理学版)》编辑部
地址:吉林省长春市前进大街2699号 邮编:130012 电话:+86-431-88499428 E-mail: sejuj@jlu.edu.cn
本系统由北京玛格泰克科技发展有限公司设计开发