Papers by Keyword: PKI

Abstract: The virtual cable television network is a cable television system with virtual assets, users in the network may have different authentication mechanisms. In order to meet corporate users across heterogeneous virtual, trusted domain request service is required. This paper proposes a bill based on the access authorization authentication scheme across heterogeneous domains. The scheme is based on VCA certification model, the Kerberos AS and the PKI domain as the domain where the CA Enterprise Domain external authentication node, generate its extracellular domain users access, the domain resources authorization bill and the session key, and then realize PKI and Kerberos cross-domain authentication ,domain user and session key agreement. Article on the safety and efficiency of the program are analyzed. Analysis shows that this scheme can resist various attacks, with high security, and higher than the efficiency of alternative solutions for virtual cable television network, efficient resource sharing of cross-domain security provides an effective solution.

Abstract: Trust model is the foundation of the whole secure architecture because it determines the trust form adopted and the risk to adopt it in network. So the research of trust model in PKI has been the hot spot of PKI technology. Firstly, some backgrounds of PKI and trust model as well as the problems to be solved by the model are discussed. Through analyzing and comparing several extant CA-based trust model, their advantages and disadvantages are described. Finally, PKI trust models are summarized, and the future research directions were discussed.

Abstract: The cloud computing offers dynamically scalable online resources provisioned as a service over the Internet cheaply. However, the security challenges it poses are equally striking. The reliable user authentication techniques are required to combat the rising security threat in cloud communications. Due to the non-denial requirements of remote user authentication scheme, it is most commonly achieved using some form of biometrics-based method. Fingerprint authentication is one of the popular and effective approaches to allow the only authorized users to access the cryptographic keys. While the critical issue in remote biometric cryptosystem is to protect the template of a user stored in a database. The biometric template is not secure and the stolen templates cannot be revoked, which is easy to leak user identity information. To overcome these shortcomings, in this paper, an indirect fingerprint authentication scheme is proposed. Further, we apply this secure scheme to the cloud system combing with PKI mechanism. At last, a comprehensive and detailed security analysis of the proposed scheme in cloud computing is provided.

Abstract: with the network intelligent development, the technique widely application brings huge convenient for peoples life and work. The network openness exist great hidden troubles along with the information security. Based on the security system of public key infrastructure, we can determine the users information security and completion through the method of providing secret keys and certificate managing by both sides. Through the research of public key infrastructure, we can design out the planning of electronic payment platform and apply it in the practical society. This is the most important point that network staff and electronic commerce works are searching.

Abstract: As the development of network the grid will be widely used. To choose a suitable authentication mechanism in a large grid is very important. Identity authentication is one of the important mechanisms that can achieve grid security. It is the first line in the grid applications. It is also a portal in the security system. In the light of the advantages and disadvantages of PKI and ID-PKI, this paper provides a new technology. Presently, PKI and ID-PKI authentication technology is a popular authentication technology. This technology uses the identity certification to reduce the overhead in the domain, and uses CA authentication between domains to guarantee the security of the system.

Abstract: In this paper, the related concepts of fingerprint recognition technology and PKI are introduced at first. In the traditional identity authentication based on PKI, the shortage of "password + certificate" which is used to perform the identity authentication is analyzed. And combined with the process of fingerprint recognition, an E-commerce identity authentication system based on fingerprint recognition and PKI is put forward. This system performs the identity authentication with the method of "fingerprint + certificate". Then the trust chain with the personal source spot is established and solves the credibility problem of the users’ identity in E-commerce.

Abstract: P2P network is open, anonymous, dynamical in contrast with conventional network. It’s full of dishonesty, deceit, selfishness. It’s necessary to build a robust security infrastructure system. The one important module of security infrastructure is to identify the users in transactions. This paper will propose an identification solution based on PKI. In our algorithm, the peer generates their public-private key pairs by themselves, to issue certificates, and perform authentication without any centralized services. It can realize the identification, meanwhile keep peers anonymous. Moreover, it can limit the quantity of ID that a user applies for; alleviate the risk of Sybil attack.