A Distributed CA-Key Generation Scheme for Resilience CA

Zhuang Yong and Feng Dengguo

PDF
Cite
Share

facebook

twitter

google

linkedin

Journal of Computer Research and Development > 2007 > 44(2): 230-235.

Zhuang Yong and Feng Dengguo. A Distributed CA-Key Generation Scheme for Resilience CA[J]. Journal of Computer Research and Development, 2007, 44(2): 230-235.

Citation:

Zhuang Yong and Feng Dengguo. A Distributed CA-Key Generation Scheme for Resilience CA[J]. Journal of Computer Research and Development, 2007, 44(2): 230-235.

Citation:

Zhuang Yong and Feng Dengguo. A Distributed CA-Key Generation Scheme for Resilience CA[J]. Journal of Computer Research and Development, 2007, 44(2): 230-235.

PDF (338 KB)

A Distributed CA-Key Generation Scheme for Resilience CA

Zhuang Yong and Feng Dengguo

(State Key Laboratory of Information Security, Institute of Software, Chinese Academy of Sciences, Beijing 100080)

More Information

Published Date: February 14, 2007

Graphical Abstract

Abstract

Abstract

Resilience CA is a CA system which implements an intrusion tolerant algorithm to protect the private key of CA. It enhances the security of system by implementing a new method to split the private key, but it uses a key distribution center to generate the CA-key and this center compromises the private key. Based on the traditional resilence CA scheme, this scheme cancels the key distribution center, and implements a distributed algorithm to generate a shared CA key, so that any t-1(t is the threshold number) servers can't compromise the private key of CA in the initialization and running stage of CA.
- resilience,
- intrusion tolerant,
- CA,
- distributed,
- digital signature