摘要
使用社群網路與通訊軟體等需要辨識身分的服務是現代人不可或缺的一環,伴隨而來的是身分認證的需求與使用者匿名的網路特質兩者衝突的情況。網路實名制解決身分認證的問題,但是不符合網路的匿名性質,本研究植基於隱式憑證概念說明記名憑證原理並加以實現。記名憑證一個可行方式是使用者與數位憑證管理機構(CA)連線,提供必要資訊並產生真實憑證,然後以暱稱(或是不透漏身分的資訊)以及身分特徵來生成記名制憑證,這樣既可在不暴露使用者身分情況下提供匿名特性,又能在驗證身分的場合來證明真實身分。本研究並將相關概念在Java平台加以實現,以便進一步了解實作之可行性以及須注意之事項。
並列摘要
The applications with user authentication, such as social networking and communication software, are important nowadays. The tradeoff between user authentication and anonymity is a question to be considered, in the other words, real-name system solves the problem of authentication, but anonymous is an important feature of the network. In this thesis, we study and implement the alias certificate based on the implicit certificate. The alias certificates can be achieved by the roles of two logical certificate authorities (CA), the first one generates the real-name certificate with user authentication data, and the second generates the alias certificate with alias and the digest of user authentication data. This can provide user authentication without exposing the identity of the user. In order to check the feasibility, we implement the alias certificate in the Java platform.
參考文獻
延伸閱讀
- 賴溪松、洪肇蔚(2005)。各種憑證變體及在公開金鑰基礎建設之應用。研考雙月刊,29(1),53-67。https://doi.org/10.6978/YKSYK.200502.0053
- 黃艾農(2005)。自然人憑證應用在電子投票之可行性研究〔碩士論文,元智大學〕。華藝線上圖書館。https://www.airitilibrary.com/Article/Detail?DocID=U0009-0112200611333719
- 洪文湘(1996)。商業會計記帳人之資格取得及法定地位。法令月刊,47(7),23-23。https://doi.org/10.6509/TLM.199607_47(7).0004
- Lin, P. C. (2015). 基於憑證之網際網路多媒體子系統認證機制 [master's thesis, National Chung Cheng University]. Airiti Library. https://www.airitilibrary.com/Article/Detail?DocID=U0033-2110201614041794
- 廖鴻圖、荘文勝、吴威震、陳冠颖(2004)。The Certificate Management of Public Key Infrastructure。Electronic Commerce Studies,2(4),449-460。https://doi.org/10.29767/ECS.200412.0006