What is PKI?

Ans:

What is PKI?

PKI (Public Key Infrastructure) is a standardized technology and specification that uses public key cryptography to provide a secure infrastructure for e-commerce. It can provide cryptographic services such as encryption and digital signature for all network applications and the necessary key and certificate management system. Simply put, PKI is the infrastructure for providing security services established by public key theory and technology. Users can utilize the services provided by the PKI platform to conduct secure electronic transactions, communications and various activities on the Internet.

In order to solve the security problems of Inter, countries around the world have conducted research on it for many years, and initially formed a complete set of Inter security solutions, that is, the current widely adopted PKI - Public Key Infrastructure.PKI (Public Key Infrastructure) technology adopts certificates to manage the public key, and through the third-party trustworthy organization - CA certification center to bind the user's public key and the user's other identifying information bundled together to verify the user's identity on the Internet. At present, the common approach is to use digital certificates built on the basis of PKI to ensure the confidentiality, authenticity, integrity and non-repudiation of information transmission by encrypting and signing the digital information to be transmitted, so as to ensure the safe transmission of information.PKI is an infrastructure based on public key algorithms and technology that provides security services for online communication. It is the *** body of all software and hardware involved in creating, issuing, managing and canceling public key certificates. Its core element is the digital certificate, the core implementer is the CA certification authority.

PKI technology is the core of information security technology, but also e-commerce key and basic technology. the basic technology of PKI includes encryption, digital signatures, data integrity mechanisms, digital envelopes, double digital signatures and so on. A typical, complete and effective PKI application system should have at least the following parts:

- Public key cryptographic certificate management.

- Blacklist publishing and management.

- Key backup and recovery.

- Automatic key updates.

- Automatic management of historical keys.

- Cross-authentication support.

Because PKI architecture is currently more mature, perfect Inter network security solutions, some large foreign network security companies have launched a series of PKI-based network security products, such as the United States of America, Verisign, IBM, Entrust and other security product vendors to provide a series of client-side and server-side security products, providing security for the development of electronic commerce. The security products provide users with a series of client-side and server-side security products, which provide a security guarantee for the development of e-commerce. For e-commerce, *** office network, EDI, etc. provides a complete network security solutions.

With the continuous popularization and deepening of Inter applications, *** departments need PKI support management; commercial enterprises within, between enterprises, regional *** networks, e-commerce sites need PKI technology and solutions; large enterprises need to establish their own PKI platform; small businesses need to provide commercial PKI services in the community. From the viewpoint of development trend, the market demand of PKI is very huge, and PKI-based applications include many contents, such as communication between WWW servers and browsers, secure e-mail, electronic data exchange, credit card transactions on the Inter, and VPN. Therefore, PKI has a very broad market application prospects.