crl(证书撤销列表,可选)。
检查证书撤销列表以确保证书还没有撤销。
A certificate revocation list is checked to ensure that the certificate has not been revoked.
最后,熟悉证书撤销列表和更新它们的流程。
Finally, get familiar with certificate revocation lists and the process for updating them.
最后讨论证书撤销和更新的机制。
Finally we discuss the mechanisms of certificate revocation and freshness.
因此该方案可以保证证书撤销的实时性。
So real-time of certificates revocation can be ensured in our scheme.
在使用CA颁发的证书时强制使用证书撤销列表。
The use of a certificate revocation list is mandatory when using CA issued certificates.
提前制定策略,以便根据专有名称和具体证书撤销访问。
Establish a strategy in advance for revoking access by distinguished name as well as by individual certificate.
唯一一种有效的方法证书撤销列表也位于队列管理器之外。
The one thing that can help, the certificate revocation list, is also external to the queue manager.
可以根据证书撤销列表检查服务器的证书,这一点是可选的。
The Server's certificate might be optionally checked against a certificate Revocation List.
证书撤销机制是影响PKI服务可靠度的关键因素之一。
The cerhficate revocation mechanism is the key to the reliability 0f PKI.
文章介绍了PKI的组成、功能等,重点介绍了证书撤销和信任模型。
This paper introduces the components of PKI and their functions. Certificate revocation and trust models of PKI are emphasized.
证书撤销一直是公钥基础设施(PK i)研究和应用中的一个难点问题。
Certificate revocation is always a hard problem in the research and application of public key infrastructure (PKI).
本方案具有分布式的私钥安全保存,及时的证书撤销和分布式信任管理等优点。
The proposed scheme has the advantages of secure private key storage, immediate certificate revocation and distributed trust management.
同时,通过引入改进的证书撤销列表(CRL)查询机制,提高CRL查询的效率。
An improved certificate revocation list (CRL) look-up mechanism is introduced to enhance CRL look-up efficiency.
提出了基于哈希表和平衡二叉树的证书撤销方案,并分析了该方案的有效性和安全性。
This paper proposes a promoted certificate revocation based on Hash table and balanced binary tree, and gives the analysis of validity and security.
证书撤销机制用于处理PK I中的证书状态问题,是PKI的一个基础性核心问题。
Certificate revocation mechanism, which is used to deal with the problem of certificate status in PKI, is a basic core problem of PKI.
在此情况下,撤销必须基于该证书的加密指纹,而提供此功能的机制就是证书撤销列表(CRL)。
Revocation in this case must be based on the cryptographic fingerprint of the certificate, and the mechanism that provides this functionality is a certificate revocation list (CRL).
实际上,证书类型的选择应该基于理想的安全策略和企业是否准备好建立和维护一个证书撤销列表。
The choice should really be made based on the desired security policy and whether the enterprise is prepared to set up and maintain a certificate revocation list.
通过改进证书撤销状态验证机制以及对LDAP目录结构和数据连接的优化来更好地支持XKMS服务。
It USES improved mechanism of certificate revocation status and optimized data structure of LDAP directory and LDAP connection to support XKMS service.
在对目前已有证书状态发布方案分析的基础上,本文提出基于二次剩余难解问题的证书撤销状态发布方案。
Following the analysis of the existing certificate revocation schemes, we propose a new certificate revocation scheme based the difficulty of resolving the Quadratic Residues problem.
证书的撤销采用证书撤销列表,而用于验证证书状态的机制一般使用轻型目录存取协议或者在线证书状态协议。
We always use certificate Revocation List to save the revoked certificates, and use Lightweight Directory Access Protocol or Online certificate Status Protocol as verification mechanism.
对另一种同样用于查询证书撤销状态的证书撤销列表CRL方法也进行了研究和探讨,并且比较了这两种方法各自的优势和劣势。
It researches and discusses the certificate Revocation List CRL method, which is also used to query the certificate revoked status and compares the advantages and disadvantages of each other.
最后,本文详细设计了证书撤销列表CRL以及增量CRL、分段CRL、重复颁发CRL体系,给出了证书撤销列表的编解码函数接口;
Finally, we design systems of CRL, Delta-CRL, segment CRL and over-issued CRL, offer a CRL encode and decode function interface.
这样的证书被发布到证书撤销列表(Certificate Revocation List)中,发送方和接收方都可以根据该列表检查接收到的证书。
Such certificates are published to a Certificate Revocation List, against which both the sender and receiver can choose to check the received certificates.
签名验证、证书撤销列表(certificate revocation list,CRL),以及利用证书的有效期来验证订阅(令牌符号)。
Signature verification, certificate revocation lists (CRLs), and certificate life-span can be used to validate the subscription (token).
免撤销公钥框架作为一种新的PKI使得终端用户可以控制他自己的公钥证书的有效性,使验证证书不需要折回到CA去获取证书撤销信息,从而降低其使用代价。
As a new type of PKI, non-repudiation PKI make makes the terminal users able to control the validation of his CA, which will reduce the expense.
它没有列入证书撤销列表(certificate revocation list,CRL)中。这样可以确保不为那些过去的订阅者(换句话说,就是那些在过去的某个时间段中是客户,但现在已不再是客户的人)提供服务。
It is not listed in a certificate revocation list (CRL), which ensures that past subscribers (in other words, those that are no longer customers but were at some time in the past) are denied service.
要求是统一撤销对该特定证书的访问权,但不必对与其关联的DN这样做。
The requirement is to universally revoke access for that specific certificate, but not necessarily for the DN associated with it.
要求是统一撤销对该特定证书的访问权,但不必对与其关联的DN这样做。
The requirement is to universally revoke access for that specific certificate, but not necessarily for the DN associated with it.
应用推荐