%0 Journal Article
%T An Intrusion Tolerant CA Scheme
一种入侵容忍的CA方案
%A JING Ji-wu
%A FENG Deng-guo
%A
荆继武
%A 冯登国
%J 软件学报
%D 2002
%I
%X CA (certificate authority) is a critical component in PKI. When the private key of a CA is compromised, all the certificates issued by that CA should be revoked. Keeping the private key secret while providing service on line is very important for a CA. Rather than prevent intrusions or detect them after the fact, the project ensures that the compromise of a few system components does not compromise the private key of the CA. The private key is protected by distributing it across a few servers. The private key is never reconstructed at a single online location.
%K intrusion tolerant
%K resilience
%K CA (certificate authority)
%K digital signature
%K RSA
入侵容忍
%K 弹性
%K CA
%K 数字签名
%K RSA
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=7735F413D429542E610B3D6AC0D5EC59&aid=2725341103CF88E1&yid=C3ACC247184A22C1&vid=FC0714F8D2EB605D&iid=5D311CA918CA9A03&sid=656BC79BFC7F0F4B&eid=E64BF5BE957AB7AB&journal_id=1000-9825&journal_name=软件学报&referenced_num=60&reference_num=4