High-security scheme of signature for certificate authority
一种安全增强的认证中心签名方案

In order to guarantees the credibility of the signature, proposed a high-security scheme of signature for certificate authority. Distributed the CA private key to signature servers with (t, n) secret sharing, and updated the private key sharing periodically using the proactive secret scheme. Used a phased-based RSA signature mechanism, so it strengthens the safety of CA private key and signature. Finally, adopted Java and OpenSSL to realize it. The experimental results show that it streng-then the security ,so it has a certain value.