| E-mail is a pioneer and most widely service provided by internet. With the development and widely application of E-mail, more and more private information and business sensitive message are transported through E-mail in internet, People have paid much attention on its security problems, pretty good privacy (PGP) is one of the most classical and useful secure electronic mail protocol in many existing protocols now. But the PGP protocol have presented some deficiency in the practical application, in this paper, some research works were done for showing problem of PGP security, authentication, and certificate management et al, the main research work of the following several respects has been done in this paper:RSA algorithm has been commonly employed as encryption and signature in the traditional PGP protocol, but its security and efficiency are contradictions. In this paper, we present a PGP protocol based on elliptic curve cryptosystem (ECC) by the substitution safely and efficiently ECC for RSA algorithm in traditional PGP protocol. The improved PGP protocol has higher security and reliability than traditional PGP protocol.On the basis of before, according to the problem of non-repudiation and secret key management on transmitter and receiver, we have analyzed some limitations in traditional bi-directional authentication mechanism, and then present a novel bi-directional authentication mechanism to suitable for EPGP protocol. When the credible third-party CA, which can realize to manage public key and provide arbitration for both communication sides when they conflict, was introduced in EPGP protocol, then the protocol becomes a bi-directional authentication EPGP protocol. The improved EPGP protocol can realize bi-directional authentication on both communication sides, manage secret key flexibly, limit authority of CA, and has obvious advantages over EPGP. |
PDF Full Text Request