本文新提出一种代替用户密钥、能供加密系统中多个密码机共用的真正的主密钥。文章中以公开密钥密码体制中最有前途的Rivest—Shamir—Adleman密码体制(RSA体制)为具体的研究对象,以简明的公式描述这种真正的主密钥的存在条件,并举例说明从用户密钥推导主密钥的算法。同时说明:用这种主密钥也能进行数字签名,并从保密的观点介绍安全的主密钥生成法和管理法。此外,关于用户密钥和主密钥的大小比,用计算进行了模拟,证实主密钥的比特数比用户密钥的比特数之和还要小的主密钥存在很多个,从节省存贮空间的观点来看证明是有效的。文章最后指出,若采用专用的芯片,使用主密钥在加密速度上也是不成问题的,主密钥的存在将有助于提高可靠性和方便性。 In this paper, we propose a new real master key that can be used by multiple ciphers in the encryption system instead of user keys. In this paper, the most promising Rivest-Shamir-Adleman cryptosystem (RSA system) in the public key cryptosystem is taken as the specific research object, a concise formula is used to describe the existence condition of this real master cryptosystem, User Key The algorithm for deriving the master key. At the same time, the master key can also be digitally signed and a secure master key generation and management method can be introduced from the standpoint of secrecy. In addition, as for the size ratio of the user key and the master key, computation is performed to simulate that there are many master keys which have a smaller number of bits of the master key than the number of bits of the user key. Storage space from the point of view proved to be effective. Finally, the article pointed out that if the use of a dedicated chip, the use of the master key encryption speed is not a problem, the presence of the master key will help to improve reliability and convenience.