| 基于CA的雷达情报传输安全认证系统的设计与实现* |
| |
| 引用本文: | 冯 新,夏靖波,周汉勋.基于CA的雷达情报传输安全认证系统的设计与实现*[J].指挥控制与仿真,2008,30(6):98-101,105. |
| |
| 作者姓名: | 冯 新 夏靖波 周汉勋 |
| |
| 作者单位: | 空军工程大学电讯工程学院,陕西,西安,710077 |
| |
| 摘 要: | 介绍了基于CA的雷达情报传输安全认证系统的整体结构及工作流程,设计了CA中心各个模块的组成和功能;使用VisualC 6.0开发工具与OpenSSL-0.9.8e开源包,实现了一个原型系统,研究了生成根钥证书,用户证书、证书吊销列表的方法和流程,为所有通信实体提供了密钥长度2048bit并遵从X.509v3标准的RSA数字证书;利用AES算法加密用户证书,结合SQLServer数据库,保证了证书的安全存储;最后探讨了USBKey智能钥匙在证书分发中的应用思路。
|
| 关 键 词: | CA 雷达情报 传输 OpenSSL 安全认证 |
| 收稿时间: | 6/6/2008 12:00:00 AM |
Design and Implementation of Radar Intelligence Transmission Security Authentication System Based on CA |
| |
| FENG Xin,XIA Jing-bo,ZHOU Han-xun.Design and Implementation of Radar Intelligence Transmission Security Authentication System Based on CA[J].Command Control & Simulation,2008,30(6):98-101,105. |
| |
| Authors: | FENG Xin XIA Jing-bo ZHOU Han-xun |
| |
| Abstract: | This paper describes the integrated framework and working flow of radar intelligence transmission security authentication system based on CA; Composition and function of each module is designed. A prototype system is implemented by VC 6.0 and OpenSSL-0.9.8e source package. With the methods and flow, the root key certificate, user certificate, CRL(certificate revoke list) etc have been bulit, every communication entity can obtain RSA digital X.509 certificate which length of secret key is 2048bit; Combined with SQL Server database, user certificate is encrypted by AES to ensure the secure storage; Finally how to distribute certificate by usb agent key system is disscussed. |
| |
| Keywords: | CA radar intelligence transmission openSSL secure authentication |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《指挥控制与仿真》浏览原始摘要信息 |
| 点击此处可从《指挥控制与仿真》下载免费的PDF全文 |
|
