论文部分内容阅读
本文介绍了一种在开放系统互连(OSI)环境下,两个端用户系统的同等层之间实现保密通信时所用的密钥生成和分配算法。该算法于连接建立阶段在两个同等层之间生成和分配会话密钥;在数据传送阶段用该密钥对其协议数据单元(PDU)中的用户数据进行加/解密;在数据传送完毕后的释放连接阶段则将该密钥消毁。这种密钥管理方法较适宜于以端到端加密交换数据的互连网络。
This article describes a key generation and distribution algorithm used to implement secure communications between peers of two end-user systems in an Open Systems Interconnection (OSI) environment. The algorithm generates and distributes the session key between two peers in the connection establishment phase. The key is used to encrypt / decrypt the user data in its protocol data unit (PDU) in the data transmission phase. After the data transmission is completed The release of the connection phase will be the key to destroy. This key management method is more suitable for end-to-end encryption and exchange of data in the interconnection network.