检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:张柁苧 王雄[1] 池亚平[1] ZHANG Tuoning;WANG Xiong;CHI Yaping(Beijing Electronic Science and Technology Institute,Beijing 100070,P.R.China)
出 处:《北京电子科技学院学报》2021年第4期45-50,共6页Journal of Beijing Electronic Science And Technology Institute
基 金:国家重点研发计划项目(2018YFB1004100)。
摘 要:OpenStack作为主流的开源云平台,其安全认证基于Keystone组件提供的UUID Token、PKI Token等方式,在总结分析OpenStack云平台目前基于Token认证的安全问题基础上,设计一种基于SM9的双向身份认证方案,利用SM9根据身份标识产生私钥的优点,解决了UUID Token无法本地认证、PKI Token证书管理复杂等问题,并在认证流程中完成SM9的安全密钥分发。经分析,该方案不仅简化了认证流程,同时也增强了Token的安全性。OpenStack is a prevailing open source cloud platform, whose security authentication is based on the UUID token and the PKI token provided by the keystone component. With a summary and analysis of the current security issues of token authentication based OpenStack cloud platform, in this paper, a mutual identity authentication scheme based on the SM9 is designed. In the scheme, the advantage of SM9 that the private key is generated according to the identity label is utilized to solve the problems that the UUID token lacks the capability of being authenticated locally and managing the PKI token certificate is complex. Meanwhile, SM9 security key distribution is completed in the authentication process. Analysis indicates that the scheme simplifies the authentication process and enhances the security of the token.
分 类 号:TN309[电子电信—物理电子学]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:3.17.129.242