| 摘 要: 针对电子政务应用中网络自助业务不断增多,用户网络安全意识普遍不高,容易受仿冒服务端发起的网络攻击,导致信息泄露、财产损失等安全问题,以业务中通信数据的完整性、机密性、不可否认性为研究对象,深入研究分析了密码学、数字签名、PKI(Public Key Infrastructure, 公共基础设施)、CA(Certificate Authority, 证书授权机构)以及证书的工作机制,提出了基于PKI的电子身份认证技术在自助电子政务中的运用方案。利用开源OpenSSL软件包,选用RSA(Rivest Shamir Adleman)签名算法、SHA(Secure Hash Algorithm, 安全散列)摘要算法,在目前最新且被市场稳定使用的Red Hat Linux 7.4系统中进行了仿真验证。结果表明,数字证书能够为通信双方提供加密和身份认证服务,结合实名制、生物识别等新网络安全技术,能有效保证自助电子政务业务的安全性,可在实际应用中推广,为解决目前自助电子政务安全难点提供了参考。 |
| 关键词: 电子政务;数字签名;身份验证;生物识别 |
|
中图分类号: TP393.2
文献标识码: A
|
|
| Research and Implementation of Identity Authentication Technology in E-government |
|
LIU Banggui1, ZENG Sicai2
|
( 1.School of Artificial Intelligence, the Open University of Guangdong, Guangzhou 510091, China;
2.Guangdong Yunzheng Data Technology Co ., Ltd., Zhongshan 528400, China )
liubanggui@qq.com; gdyztech@163.com
|
| Abstract: With the increasing network self-service business in e-government applications, network users generally have low awareness of network security and they are vulnerable to network attacks from counterfeit servers, which leads to security issues such as information leakage and property loss. Taking the integrity, confidentiality and non repudiation of communication data in business as the research objects, this paper is based on in-depth research and analysis of cryptography, digital signatures, PKI (Public Key Infrastructure), CA (Certificate Authority) and working mechanism of certificates. This paper then proposes an application scheme of electronic identity authentication technology based on PKI in self-service e-government, using open source OpenSSL software package, and selecting RSA (Rivest Shamir Adleman) signature
algorithm and SHA (Secure Hash Algorithm) digest algorithm. The simulation verification is carried out in the latest and stable Red Hat Linux 7.4 system. Results show that digital certificate can provide encryption and identity authentication services for both parties of communication. Combined with new network security technologies such as real name system and biometrics, it can effectively ensure the security of self-service e-government business, and can be popularized in practical application, which provides a reference for solving current difficulties of self-service e-government network security. |
| Keywords: e-government; digital signature; identity verification; biometrics |
