For Video Surveillance: Simplified Design of a Certificate & Key Management System

• 1、School of computer science,Beijing University of Posts and Telecommunications,Beijing 100876

Abstract：This paper combines national standards such as GB35114-2017 to study and design a digital certificate key management system for video surveillance. The system adopts a microservices architecture and is divided into five functional modules: hardware password module, certificate request file CSR management module, key management module, digital certificate management module, and communication module. Three microservices, namely RA center, CA center, and KMC key management center, are built. In order to ensure the autonomy and controllability of the hash algorithm and encryption algorithm, the system uses all national encryption algorithms, including SM2 asymmetric encryption algorithm, SM3 hash algorithm, and SM4 symmetric encryption algorithm. The key required by the system is generated by the hardware password module, including the certificate request file CSR, the public key in the digital certificate, etc. Finally, the system was tested to verify the effectiveness of its functionality.

Keywords： video surveillance digital certificate key national cryptography algorithm