关键词: 对等网 数字证书 证书撤销列表 模型

Abstract:

Updating the certificate revocation list（CRL）by large amount of certificate users at the same time results in a performance bottleneck in PKI systems.By addressing this problem,this paper introduces a P2P-based CRL update scheme,which utilizes the resources on the CRL users to improve CRL update per formance.Analytical models are built to compare the P2P-based scheme with other schemes in digital campus applications.

Key words: peer-to-peer,digital certificate,CRL,model