不可抵赖性

为了保障网络上数据的机密性、完整性和不可抵赖性，建立公平、公正、权威的CA系统是CA认证中心的重要工作。

For the protection of network data integrity , confidentiality and non-repudiation , to establish a fair , just , and authoritative CA system is the important work of CA Certification Center .

因此，同时使用SOAP-DSIG和SSL（带有客户机身份验证）是实现不可抵赖性的第一步。

Therefore , using SOAP-DSIG and SSL ( with client authentication ) simultaneously is the first step towards realizing non-repudiation .

给出了一个SET交易的安全实现模型，它保证了交易的有效性、机密性、完整性和不可抵赖性。

Finally , it presents a secure implementation model of SET transaction , which ensures the validity , confidentiality , integrity and non-repudiation of transaction .

SOAP-DSIG和SSL是如何结合起来以实现不可抵赖性的？

How are SOAP-DSIG and SSL combined in order to realize it ?

在保证信息安全、身份证明、信息完整性和不可抵赖性等方面PKI得到了普遍的认同，起着不可替代的作用。

Because of guaranteeing the information security , identity authentication , information integrity and nonrepudiation , PKI got the widespread approbation .

现在，人们通常采用基于数字摘要、结合RSA算法所形成的数字签名技术来保证交易数据的完整性和不可抵赖性。

Nowadays we combine the digital signature technology based on digital digest and RSA algorithm to ensure the integrity and non-repudiation .

除了以上两项安全性要求以外，不可抵赖性也是B2B应用中相当重要的一个要求。

In addition to the above two security requirements , non-repudiation is an important requirement in B2B applications as well .

因此，同时使用SSL和SOAP-DSIG是保护被传输的SOAP消息的安全以实现不可抵赖性的最有前途的方法。

Therefore using SSL and SOAP-DSIG simultaneously is the most promising approach to securing the transmitted SOAP messages to insure non-repudiation .

使用PKI（PublicKeyInfrastructure）技术，可以解决网络中用户身份鉴别和不可抵赖性问题，但对于远端主机与代理服务器之间的相互身份认证却不能很好地解决。

The problems of authentication and undeniability can be solved by using PKI ( Public Key Infrastructure ) technology , but there is still not a good solution to authentication between remote host and proxy server .

SHL为交易提供稳定的验证性，保证交易的不可抵赖性。

SHL can offer continuous authentication for e-commerce and ensure the nonrepudiation to transaction .

我们需要问一问，在B2B应用中为实现不可抵赖性同时使用SOAP-DSIG和SSL条件是否充分。

We need to ask the question whether or not to using SOAP-DSIG and SSL simultaenously is sufficient for non-repudiation in B2B applications .

公用密钥设施（PKI）提供数字证书、数字签名和加密技术，能够保证数据的身份认证、保密性、完整性和不可抵赖性。

Public Key Infrastructure ( PKI ) which provides digital certificate , digital signature and encryption technology , can ensure the authentication , privacy , integrity and non-reputation of data .

该系统采用3DES算法对交易信息加密保证交易的保密性，通过对交易信息进行MAC校验保证交易的防篡改，对重要交易信息进行数字签名保证交易不可抵赖性。

The system can ensure the integrity , secrecy and trusty of the information with 3 DES encryption algorithm , MAC verifying and digital signature .

应用无求逆数字签名方案实现CA认证，简化了计算复杂度，并通过通讯双方数字签名实现不可抵赖性，最后给出了协议安全分析。

The CA mechanism is executed by using the no-inverse digital signature scheme , and the complexity of computing is reduced . The mutual signatures of communication realize the nonrepudiation . The security analysis of the protocol is given .

PKI系统通过方便灵活的密钥和证书管理方式，为用户建立起一个安全的网络运行环境，为访问控制、保密性、完整性、不可抵赖性等安全机制在系统中的实施奠定了基础。

PKI systems can set up a safe net environment , by the flexible way of managing key and certificate , which becomes the fundament of implementing security mechanism such as access control , confidentiality and integrity .

S/MIME、TLS协议采用基于公钥证书的认证机制，提供认证信息的私密性、不可抵赖性与完整性保护，是一种较好的安全解决方法。

Based on the authentication mechanism of the public key certificate , S / MIME and TLS provide privacy , authentication , no denying and integrality protection , are better solutions .

PKI以公开密钥技术为基础，以数据的机密性、完整性和不可抵赖性为安全目的，构建的认证、授权、加密等软硬件综合设施。

PKI is based on the public-key technology , with security purpose of integrality , confidentiality , and undeniable feature of information to construct a colligate instrument with software and hardware used for authentication , authorization , encryption , etc.

所以看起来同时使用SOAP-DSIG和SSL对于实现不可抵赖性来说已经足够了，那么我现在就提供两个来自恶意接收方（而非第三方）的攻击。

Therefore , it seems that using SOAP-DSIG and SSL simultaneously is sufficient for non-repudiation , so I will now present two attacks by malicious recipients ( not by third parties ) .

该方法实现了认证和数据加密双项安全，满足了SIP的安全要求，保证了会话建立和消息通信过程中的完整性、可靠性和不可抵赖性。

This security method achieved the safety of both authentication and data encryption . At the same time , it meets the safety requirements of SIP to ensure that the integrity , reliability and incontestability in the process of session establishment and message conversation .

本文回答了下列问题：什么是不可抵赖性？

This article answers the following questions : What is non-repudiation ?

与此类似的是，发送方身份验证也无法满足不可抵赖性的条件。

Similarly , sender authentication is not sufficient for non-repudiation .

对不可抵赖性的需求因恶意发送方而引起。

The need for non-repudiation arises because of malicious senders .

使用数字签名的消息身份验证还不能满足不可抵赖性的条件。

Message authentication by using a digital signature is not sufficient for non-repudiation .

利用形式化的方法验证了所设计的移动支付协议可以保证支付过程的不可抵赖性。

Additionally the protocol is proved to be of non-repudiation guarantee by formal analysis .

为了使消息具有不可抵赖性，您可能想使经过加密或签署的消息持久存在。

You might want to persist an encrypted or signed message for non-repudiation purposes .

基本实现了系统消息的机密性、完整性、真实性和不可抵赖性要求。

The system achieved message confidentiality , integrity , authenticity and non-repudiation requirements basically .

这一概念称作不可抵赖性。

This concept is known as non-repudiation .

利用加密和数据签名技术保证了重要数据的安全性和不可抵赖性。

The security of important data has been enforced using encryption and digital signature techniques .

不可抵赖性是开发电子商务系统必须要解决的问题之一。

Non repudiation is one of the important questions of development of electronic business system .

身份认证用于鉴别用户身份，以保证通信双方身份的不可抵赖性。

Authentication used to identify the user , the identity of communicating parties to ensure non-repudiation .