一种密钥管理方法及系统

Secret key management method and system

Abstract

The invention discloses key management method and system, belonging to the field of information safety. The method comprises the following steps of: generating a random number as a management key when an intelligent key device is electrified for the first time, wherein the management key can not be read out, and the intelligent key device is provided with a transmission key in advance; when receiving an APDU (Application Protocol Data Unit) for writing a master control key, deciphering by using the transmission key; encrypting the master control key by using the management key and then storing the encrypted master control key in the intelligent key device; deciphering the APDU by using the management key in the process of creating a file system; setting the intelligent key device into an application state after the process of creating the file system is ended; and erasing the management key when the intelligent key is ended.
本发明公开了一种密钥管理方法和系统,属于信息安全领域。该方法包括:当智能密钥装置第一次上电时,生成随机数作为管理密钥,所述管理密钥不可读出,智能密钥装置中预先的装有传输密钥,当接收到写主控密钥的APDU时,使用传输密钥进行解密,并且将主控密钥使用管理密钥进行加密后存储在所述智能密钥装置中,在创建文件系统的过程中将APDU使用主控密钥进行加密,在创建文件系统结束后,将所述智能密钥装置设置为应用状态,当终止智能密钥装置使用时,擦除管理密钥。

Claims

Description

Topics

Download Full PDF Version (Non-Commercial Use)

Patent Citations (3)

    Publication numberPublication dateAssigneeTitle
    CN-101009556-AAugust 01, 2007中国信息安全产品测评认证中心, 北京明宇科技有限公司一种智能卡与u盘复合设备及其基于双向认证机制以提高访问安全性的方法
    CN-101013464-AAugust 08, 2007北京飞天诚信科技有限公司Method for information interaction between host computer and smart card
    CN-101163014-AApril 16, 2008中国电信股份有限公司一种动态口令身份认证系统和方法

NO-Patent Citations (0)

    Title

Cited By (0)

    Publication numberPublication dateAssigneeTitle