本文選題：長三角　切入點：電子認證　出處：《浙江工業(yè)大學》2014年碩士論文　論文類型：學位論文

【摘要】：隨著長三角地區(qū)電子認證服務的蓬勃發(fā)展,目前長三角地區(qū)的浙江、江蘇、上海均已建立了各自的區(qū)域性電子認證服務機構(簡稱CA機構),經過幾年的建設,三地的發(fā)證量與電子認證應用都取得了快速的發(fā)展。由于三地CA機構在建設之初沒有實現系統(tǒng)的互聯(lián)互通,導致目前三地電子認證不能實現跨區(qū)域、跨行業(yè)的應用。隨著三地經濟聯(lián)系的日益密切,電子認證應用范圍不斷擴大,應用需求不斷顯現,應用水平不斷深化,實現電子認證跨區(qū)域、跨行業(yè)的應用需求日益迫切,因此長三角地區(qū)電子認證服務體系互聯(lián)互通問題亟待解決。 本文依據長三角一體化的迫切需求,研究參考了相關國際國內標準與規(guī)范,在現有的浙江CA、江蘇CA、上海CA的基礎上,采用交叉認證的方式實現CA的互認,并設計了長三角電子認證服務應用互通平臺,來實現三地跨區(qū)域、跨行業(yè)的證書應用。本文的主要研究成果如下： 1.針對長三角電子認證現狀,結合當前電子認證的需求,對長三角電子認證服務體系互聯(lián)互通平臺的總體方案,進行了分析與研究,并給出了設計方案,經過平臺的建設與實施,該技術方案被證明是合理有效的。 2.針對長三角目前各區(qū)域CA的實際情況,選擇并實現了一種交叉認證模式(網狀點對點交叉認證方式),經過實踐,證明是符合長三角電子認證現狀的交叉方式,實現了三地CA機構的互聯(lián)互認。 3.參考借鑒X.509V4標準,設計并實現了基于“應用通行證”的應用互通平臺,通過“應用通行證”來管理用戶的不同應用屬性,進而實現三地證書應用的互聯(lián)互通。 通過對長三角電子認證服務體系互聯(lián)互通平臺的設計、建設與實施,平臺取得了一定的社會效益與經濟效益,并為長三角經濟一體化提供了一個基礎的網絡安全平臺。
[Abstract]:With the rapid development of electronic certification services in the Yangtze River Delta region, Zhejiang, Jiangsu and Shanghai in the Yangtze River Delta region have all established their respective regional electronic certification service institutions (CA institutions for short). After several years of construction, The number of certificates issued in the three places and the application of electronic authentication have developed rapidly. Because the CA institutions in the three places did not realize the interconnection of the systems at the beginning of construction, the electronic authentication in the three places cannot be implemented across regions. Cross-industry application. With the increasingly close economic ties between the three places, the application scope of electronic authentication is constantly expanding, the application needs are constantly emerging, the application level is deepening, and the application needs of electronic authentication across regions and industries are increasingly urgent. Therefore, the problem of interconnection of electronic authentication service system in Yangtze River Delta needs to be solved urgently. According to the urgent need of integration of Yangtze River Delta, this paper studies and refers to the relevant international and domestic standards and norms. On the basis of the existing CA in Zhejiang, Jiangsu and Shanghai, the mutual recognition of CA is realized by cross-certification. And designed the application interworking platform of electronic authentication service in Yangtze River Delta to realize the certificate application of three places across regions and industries. The main research results of this paper are as follows:. 1. In view of the current situation of electronic authentication in Yangtze River Delta, combined with the demand of electronic authentication, the overall scheme of interconnection platform of electronic authentication service system in Yangtze River Delta is analyzed and studied, and the design scheme is given. Through the construction and implementation of the platform, the technical scheme has been proved to be reasonable and effective. 2. According to the actual situation of CA in each region of Yangtze River Delta at present, a cross authentication mode (mesh point to point cross authentication) is selected and realized. The practice shows that it is a cross mode that accords with the status quo of electronic authentication in Yangtze River Delta. The mutual recognition of CA mechanism in three places is realized. 3. Referring to X.509V4 standard, the application interworking platform based on "application pass" is designed and implemented, which manages the different application attributes of users through "application pass", and then realizes the interconnection of certificate applications in the three places. Through the design, construction and implementation of the interconnection platform of the electronic authentication service system in the Yangtze River Delta, the platform has achieved certain social and economic benefits, and has provided a basic network security platform for the economic integration of the Yangtze River Delta.
【學位授予單位】：浙江工業(yè)大學
【學位級別】：碩士
【學位授予年份】：2014
【分類號】：TP393.08

【參考文獻】

相關期刊論文 前10條

1 孟洋,徐向陽;PKI/CA交叉認證體系[J];湖南文理學院學報(自然科學版);2005年01期

2 馮運波,任金強,楊義先;傳統(tǒng)PKI與橋CA認證體系[J];電信科學;2002年01期

3 何翔;李思偉;薛建國;;PKI/CA技術應用的探討與研究[J];計算機安全;2011年08期

4 任金強;劉海龍;;美國聯(lián)邦PKI(FPKI)的發(fā)展與現狀[J];電子政務;2005年23期

5 沈潔;蔣朝惠;;基于SOA的CA交叉認證的研究與實現[J];貴州大學學報(自然科學版);2010年01期

6 張全偉;;融合PKI基礎設施的信息安全保障技術框架研究[J];信息安全與技術;2012年08期

7 陳建輝;呂堯;;證書策略的分類分級研究[J];信息安全與技術;2012年09期

8 張亮鳴;陳戲墨;;基于PKI CA跨域認證平臺的應用[J];信息安全與技術;2013年04期

9 陳占芳;馬天宇;宋紅偉;李鵬鵬;王歡;蔣振剛;馮欣;;一種交互式身份認證及訪問控制安全信息平臺的設計與實現[J];長春理工大學學報(自然科學版);2013年Z2期

10 陳月華;閆曉麗;;電子認證服務業(yè)政策現狀與趨勢[J];信息安全與技術;2012年09期

，

本文編號：1611395