面向视频监控的数字证书密钥管理系统的设计与实现
首发时间:2024-06-19
摘要:本文结合GB35114-2017等国家标准研究并设计了面向视频监控的数字证书密钥管理系统,系统采用微服务架构,按照划分的硬件密码模块、证书请求文件CSR管理模块、密钥管理模块、数字证书管理模块、通信模块五个功能模块,搭建了RA中心、CA中心、KMC密钥管理中心三个微服务。为了保证杂凑算法、加密算法自主可控,系统全部使用国密算法,包括SM2非对称加密算法、SM3杂凑算法、SM4对称加密算法。系统需要的密钥由硬件密码模块生成,包括证书请求文件CSR、数字证书中的公钥等。最后对系统进行了测试,验证了系统各功能的有效性。
For information in English, please click here
For Video Surveillance: Simplified Design of a Certificate & Key Management System
Abstract:This paper combines national standards such as GB35114-2017 to study and design a digital certificate key management system for video surveillance. The system adopts a microservices architecture and is divided into five functional modules: hardware password module, certificate request file CSR management module, key management module, digital certificate management module, and communication module. Three microservices, namely RA center, CA center, and KMC key management center, are built. In order to ensure the autonomy and controllability of the hash algorithm and encryption algorithm, the system uses all national encryption algorithms, including SM2 asymmetric encryption algorithm, SM3 hash algorithm, and SM4 symmetric encryption algorithm. The key required by the system is generated by the hardware password module, including the certificate request file CSR, the public key in the digital certificate, etc. Finally, the system was tested to verify the effectiveness of its functionality.
Keywords: video surveillance digital certificate key national cryptography algorithm
基金:
引用
No.****
同行评议
勘误表
面向视频监控的数字证书密钥管理系统的设计与实现
评论
全部评论0/1000