关键词: 特权管理基础设施 代理签发服务 委托 代理签发模块

Abstract:

Delegation issuing service is one of the new delegation modes issued by the X. 509 2005 draft amendment. Delegation issuing of certificates in this fashion gains many advantages such as easy promulgation, convenient audition and facile maintenance and so on. By analyzing the deficiency of the delegati on model in X. 509 v4（2000）, this paper presents a new delegation model which includes DIM and is based on DIS. A further analysis on the performance  of this model is carried out.

Key words: （PMI, delegation issuing service （DIS）, delegation, delegation issuing module（DIM））