信息安全研究 ›› 2016, Vol. 2 ›› Issue (7): 628-638.

• CFL认证研究专题 • 上一篇    下一篇

CFL密钥管理研究

杜春玲   

  1. 山东科技大学信息工程系
  • 收稿日期:2016-07-14 出版日期:2016-07-15 发布日期:2016-07-14
  • 通讯作者: 杜春玲

Study on the CFL‘s Key Management

  • Received:2016-07-14 Online:2016-07-15 Published:2016-07-14

摘要: 密钥管理是网络安全问题中的关键,具体处理密钥自产生到最终销毁整个过程中的有关问题,包括密钥的生成、备份、存储、使用、交换、更新、销毁等.涉密信息系统的安全保密管理人员包括系统管理员、安全保密管理员和安全审计员.针对密钥管理技术与理论进行分析研究,在梳理密钥管理技术的基础上,给出了CFL认证体制的密钥管理的基本要求. 同时分别对国家保密标准中所规定的这3类安全保密管理人员进行研究,分析各自职责.

关键词: 生命周期, 密钥管理, 常用技术, 保密, 权限, CFL (Chen, Fan, and Lü)

Abstract: Key management is the core problem of network system security, which deals with the correlative problems from key being generated to ultimately destroyed,it includes key generation, key backup, key storage, key usage,key exchange,key renovation,key destruction,and etc. The security and privacy management personnel for secretinvolved system management personnel,security and privacy management personnel,and security audit personnel. This thesis aims at the analysis and research on the theoritical and technological key management.On the summary of the key management, the basic requirement about the key management of CFL is given..And analyze the respective responsibilities of these three security and privacy management personnel stipulated in the state security standard

Key words: life cycle, key management, common technique, security, authorization, CFL (Chen, Fan, and Lü)