| Public Key Infrastructure (PKI) is an inspiring field in recent years with various reasons. It makes much new technology that is used to establish solutions to E-business become true. In addition, some aspects of it are similar to the state of network infrastructure in the early 1980's.This is to say, new opportunity and development have been continual emerging in the fields of PKI or correlative with it.Origin of task: information security platform (PKI structure) is fruits that are gained from 863 Plan in China. Our main task is to make the most material and central part of PKI seperate from software or hardware system structure overseas so that it can run by the way of breaking away from foreign host hardware platform and operating system , which can construct trusted calculating environment. Information security platform (PKI structure) has changed the remedying model in information security field in China and has put forward a integrated technology solution, which put another complexion on civil information security field limited and controlled before.Heilongjiang Economic and Trade Commission Information Center and other several companies put forward the apply to National Cryptograph Commission for constructing PKI .Now the application has been examined, approved and reported to the head at the same time. The construction will promote the development of information security and network application in Heilongjiang province. Researching on the project will bring a broad market scene for our province, such as network office,declaring dutiable goods and network trade and so on. The content of the task is that we utilize PKI to construct secure E-mail transfer system. The system not only can run independently but can be integrated in internet applications, which is a module in whole application system.As the most effective application, E-mail more and more needs to transfer data safely. The paper discusses secure problems in present E-mail. And we also analyze the reasons that cause these deficiencies from the implementation mechanism. Furthermore, we put forward the method of combining PKI with S/MIME and establish a secure transfer system according to the selection of secure criterion,the components of PKI,running,management of key and certificate and trusted model and so on. Then the paper puts emphasis on explaining the design of solution to secure E-mail transfer in goal,running model and whole solution. At last, the paper discusses how End-User and Server come true and analyzes the principle of data secure transfer. The principle of the solution also can be used in software system based on PKI. The solution has better expansibility, besides, the paper brings forward some deficiencies of the solution and the research direction in the future.
|
PDF Full Text Request