网络与信息安全学报2025,Vol.11Issue(6):17-35,19.DOI:10.11959/j.issn.2096-109x.2025064
去中心化公钥基础设施综述
Survey of decentralized public key infrastructure
摘要
Abstract
Public key infrastructure is an essential component in the field of network and information security,serv-ing a critical role in scenarios such as digital identity authentication,secure data transmission,and integrity protec-tion.However,the centralized architecture of traditional public key infrastructure has significant flaws,requiring users to fully rely on trusted third-party organizations,which undermines users'control over their personal data and leads to issues such as single point of failure,privacy leakage,and man-in-the-middle attack threats,thus making it difficult to adapt to the security demands of distributed network environments.To address these issues,decentral-ized public key infrastructure employs blockchain technology to achieve a decentralized distribution of trust,effec-tively eliminating the risk of single points of failure.Distributed ledger technology enables users to authenticate their identities while minimizing the exposure of personal information,thereby reducing the risk of privacy breaches.Furthermore,its transparency and immutability enhance protection against data theft and identity forgery,significantly improving the security and reliability of the system.The core theories and technological foundations of decentralized public key infrastructure are outlined.A comprehensive and systematic classification framework for decentralized public key infrastructure is constructed based on network topology and trust management models.A series of evaluation criteria encompassing security,privacy,performance,and other dimensions is proposed,and existing methods of decentralized public key infrastructure are reviewed and analyzed according to the proposed criteria.Finally,the challenges faced by current decentralized public key infrastructure methods are summarized,and insights into future trends and research directions are provided.关键词
去中心化公钥基础设施/公钥证书/区块链/信任管理Key words
decentralized public key infrastructure/digital certificate/blockchain/trust management分类
信息技术与安全科学引用本文复制引用
SHI Chaoming,YAN Zheng,ZHANG Zitong,WANG Haiguang,LI Tieyan..去中心化公钥基础设施综述[J].网络与信息安全学报,2025,11(6):17-35,19.基金项目
国家自然科学基金(U23A20300,62072351) (U23A20300,62072351)
陕西省自然科学基础研究计划重点基金(2023-JC-ZD-35) The National Natural Science Foundation of China(U23A20300,62072351),The Key Research Project of Shaanxi Natural Science Foundation(2023-JC-ZD-35) (2023-JC-ZD-35)
