chrispeng [ad_1]
Overview
The resident health card adopts IC card technology. In the resident health card and related services, cryptographic technology is the basic means to ensure the security of business data. The business process of card production, management and application system all need the support of cryptographic technology.
The resident health card data security guarantee system is composed of keys, encryption algorithms, encryption equipment, key services, and management system software.
The key management system is responsible for the management of card-level keys, management keys, consumer keys, and key access of third-party cooperative institutions. It is the core system of the resident health card, and together with the application system constitutes the security guarantee for the resident health card system system. The key management system needs to provide effective support for the application system and the production and management of a huge number of cards. A complete and controllable key management system is an important part of ensuring the compliance, safety and development of residents’ health card projects.
construction plan
This scheme adopts the security technology based on the “Key Management System” of Jiangnan Keyou, provides key management and secure calculation support for various business systems, and improves the security protection system of the residents’ health card system.
The key management system provides the following functions:
Responsible for completing the application and management of PBOC2.0 standard issuer certificate;
Responsible for the management of keys related to IC card applications (including application keys, card personalization exchange master keys, etc.);
Responsible for distributing various keys to card manufacturers, card personalization centers, and business pre-transaction encryption machines, etc.;
Various key management for symmetric and asymmetric key systems;
Other functional requirements related to key management, such as key operation audit, key operation authority restriction and other functions.
The hierarchical relationship between keys in the key system is shown in the figure below.
In the resident health card business system, the “Key Management System” of Jiangnan Keyou supports the CA system supported by the Ministry of Health, and can realize the management of various keys involved in the resident health card.
Key Management System Logical Architecture
[ad_2]
