计算机科学与探索2024,Vol.18Issue(10):2573-2593,21.DOI:10.3778/j.issn.1673-9418.2311038
区块链在PKI安全中的应用研究
Research on Application of Blockchain in PKI Security
摘要
Abstract
The design idea of emphasizing application and neglecting defense leads to the lack of endogenous security attributes at the beginning of the design of transmission control protocol/Internet protocol(TCP/IP)architecture.Public key infrastructure(PKI),as an authoritative security governance framework to realize the authenticity,integrity,confidentiality and non-repudiation of communication between different entities on the Internet,has attracted much attention since it was proposed,which has also become the focus of researchers in recent years because of single point of failure and single trust and other security threats caused by the centralized mechanism of PKI.With the gradual application of blockchain technology in the field of information security,it has become a research direction and focus to use the characteristics of decentralization,distributed ledger,tamper-proof,openness and transparency of blockchain to solve various security problems arising in the native PKI and its evolution.According to the appli-cation and development of PKI and blockchain,the methods to solve PKI security are divided into the solutions based on Web of trust(WoT)technology and certificate transparency(CT)mechanism,which do not rely on block-chain,the centralized PKI solutions integrated with blockchain technology,which retain the core function of certifi-cate authority(CA),and the decentralized PKI schemes based on blockchain,which completely replace the CA func-tion with blockchain.Firstly,the security status of the original PKI is introduced,and the methods using WoT tech-nology and CT mechanism to transform the security of the original PKI are discussed respectively.Then,the design ideas of centralized PKI integrated with blockchain technology and decentralized PKI based on blockchain are ana-lyzed.Some typical application scenarios are selected to analyze their implementation methods and application char-acteristics.Finally,the application research of blockchain in PKI security is prospected.关键词
区块链/公钥基础设施/网络安全/证书管理/认证机构Key words
blockchain/public key infrastructure/cybersecurity/certificate management/certificate authority分类
信息技术与安全科学引用本文复制引用
夏玲玲,王群,马卓,梁广俊..区块链在PKI安全中的应用研究[J].计算机科学与探索,2024,18(10):2573-2593,21.基金项目
国家自然科学基金(61802155,62272203) (61802155,62272203)
江苏省高校优秀科技创新团队项目 ()
公安技术、网络空间安全"十四五"江苏省重点学科项目 ()
公安部科技计划项目(2023JSZ09).This work was supported by the National Natural Science Foundation of China(61802155,62272203),the Project of Excellent Scientific and Technological Innovation Team of Jiangsu Universities,the Key Discipline Projects of Jiangsu Province in the 14th Five-Year Plan:Public Security Technology and Cyberspace Security,and the Science and Technology Project of Ministry of Public Security of China(2023JSZ09). (2023JSZ09)
