| Public key infrastructure (PKI) is a network security infrastructure that is based on the password theory and can be widely used. The techniques of digital certificate, CA, cryptographic protocols of PKI can be directly and effectively used to solve the issue of secure transmission of information. They can realize the identity authentication, control access, keeping data confidentiality, integrity and non-repudiation.For the issues of e-commerce security, this dissertation designs a security infrastructure of an online bookstore to study a PKI-based small-scale, simplified security system construction. It balances the relation between cost and security. Issuance of a certificate for the online bookstore, certificate query, certificate update, certificate revocation, etc. as well as authentication and trust mode have been analyzed.The main results are as followings:1. The characteristics and differences between symmetric key encryption technology and non-symmetric key encryption technology have been analyzed. The analysis results are the foundation of the online bookstore.2. The different of five trust models and cross-certification model have been analyzed. It is the theoretical basis of designing and carrying out the PKI-based online bookstore.3. The overall structure of PKI-based online bookstore is designed. The various function modules of the online bookstore are achieved by using java technology and tomcat server and page layout of registration, book selection and filling orders are designed.4. The online bookstore's core business process is completed such as certificate management process design and payment process design.5. The core modules of CA is simulated completely. The code of certificates establishment, certificates cancellation, and certificate check are completely designed. The user authentication and signature of orders are achieved. |
PDF Full Text Request