PKI refers to a mechanism for making and distributing certificates. Under the guarantee of this mechanism, reliable network communication can be carried out. That is, a secure network communication guarantee mechanism. Pki technology is the core of information security technology and the key and basic technology of e-commerce. The basic technologies of pki include encryption, digital signature, data integrity mechanism, digital envelope, double digital signature and so on.
Extended data:
superiority
1, using public key cryptography technology, can support tamper-proof digital signatures. Digital signature includes the identity information and verification information of the verifier, which can ensure the security of the digital certificate. At the same time, in the process of verification, the information of the verifier can be traced back, which provides a high degree of protection for the security of data.
2. Support offline authentication. Digital certificates based on PKI technology support offline authentication. Because the digital certificate is issued by the third-party certification center of CA, and the user's authentication information and authentication key have been stored in the digital certificate, there is no need to query online during the authentication process, so various authentication methods are provided.
3.PKI system includes the revocation service of CA digital certificate, which enables users to control the application of digital certificate, ensure the security of user identity information in various environments, prevent the malicious application of identity information after loss and theft, and provide a controllable security mechanism for CA digital certificate.
4.PKI technology has good network interaction ability. PKI technology can provide an effective security mechanism for systems interacting through the network, provide security services for large-scale distributed networks and more complex network environments, and effectively guarantee the transmission of network data.