A Trusted Third Party Inter-Domain Authentication Model Based on Trust Lists

At present,there are thirty-one third-party certification authorities(CAs) obtaining a license of electronic certification services in China.The trust and verification schemes among CAs are becoming an increasingly urgent problem.In view of this problem,a trusted third party inter-domain authentication model based on trust lists is proposed in this paper.To overcome the shortcomings of traditional trust lists model,the proposed model utilizes digital certificate and other security services provided by public key infrastructure.It is better to manage and control the trusted root certificate lists by using a new trust mechanism.Furthermore,the proposed model can effectively realize multi-CA mutual trust and mutual recognition.For the practical running of the new model,we design its work-flow,multi-CA authentication scheme and multi-CA application supporting system.In addition,some key technology problems are discussed in detail.Analysis shows that the proposed model can facilitate application systems' dynamic compatibility to the digital certificates issued by different certification authorities.And it has obvious advantages at authentication efficiency,safety,practicability,application of transformation and Etc.