| The security of modern cryptography is based on the security of the cryptographic key. In order to ensure the security requirements of Hard Disk Encryption Card (HDEC), Key Management System (KMS) is designed and implemented in this paper. KMS can prevent key from illegal acquirements, copying or falsification, and is portable as well as ease to use.The main works of this dissertation are summarized as follows:1. The key secure acquire protocol, based on smart card technology, carries out the authentication between HDEC and key storage card, and settles the security problems in key storing and acquiring.2. The secure backuping and using mechanism for root key, based on threshold cryptosystem, segments the root key of the KMS to prevent the root key from being divulged caused by partial information leaking.3. A three-level key management model is established to solve the security problems in the processes of key creating, storing and handing.4. Database encryption and user-dependent restorable key management scheme insure the security of key storing, backuping and restoring.System level security analysis and test results show that the KMS for HDEC meets the security requirements of key producing, storing, distributing, backuping and restoring, therefore satisfies the security requirements on keys of the hard disk encryption system. |
PDF Full Text Request