本文已被:浏览 2239次 下载 3794次
Received:September 07, 2011 Revised:November 08, 2011
Received:September 07, 2011 Revised:November 08, 2011
中文摘要: 基于身份的公钥加密(Identity-based Encryption,简称IBE)体制采用用户ID 作为公钥,无需公钥证书操作,较传统的PKI 体系具有开发部署简单、应用成本低等优势,尤其适用于密钥集中式管理的企业级应用。设计了一个基于Web Service 的IBE 密钥管理服务系统IBE Service,实现各个网络安全域内的用户密钥管理,提供以用户安全策略为中心的密钥服务;基于IBE Service 开发了一个面向通用文件加密的客户端应用,主要通过SOAP 服务接口实现基于XML 的IBE 密钥数
中文关键词: 文件加密 IBE Web Service SOAP XML
Abstract:Identity-based public key encryption (short for IBE) system can directly take user's ID as her public key, without need of public key certificate. Comparing to the traditional PKI, IBE is easy to develop and deploy with lower cost. It is specially suited for the enterprises with centralized key management supported. In this paper, a web servicebased IBE key management service system, IBE Service, is firstly proposed, which facilitates users of different security domains to manage IBE keys and provides a user secure policy-centered key service. Based on IBE service, a general file encryption client application is then developed. It utilizes SOAP protocol to implement XML-based IBE key data communications. The proposed new file encryption system can map the receiver's ID as her public key, and the receiver can automatically do decryption by achieving her private key from IBE service. It is more secure, efficient, as well as with flexible ID secure policy supported.
keywords: file encryption IBE web service SOAP XML
文章编号: 中图分类号: 文献标志码:
基金项目:浙江省科技计划项目(2010C31126; 2011C21046);2010 年度浙江省大学生科技创新活动计划项目.
引用文本:
施健,陈铁明,茆俊康.基于IBE Service 的新型文件加密系统.计算机系统应用,2012,21(6):16-19
SHI Jian,CHEN Tie-Ming,MAO Jun-Kang.File Encryption System Using IBE Service.COMPUTER SYSTEMS APPLICATIONS,2012,21(6):16-19
施健,陈铁明,茆俊康.基于IBE Service 的新型文件加密系统.计算机系统应用,2012,21(6):16-19
SHI Jian,CHEN Tie-Ming,MAO Jun-Kang.File Encryption System Using IBE Service.COMPUTER SYSTEMS APPLICATIONS,2012,21(6):16-19
