Integral to any authentication system is the design of its public key infrastructure (PKI), allowing the system to distribute, maintain, and revoke cryptographic keys while dividing and allocating the responsibility of security between different entities. This paper develops a PKI for two SBAS candidate authentication schemes: one each for an L5 I‐channel and Q‐channel implementation. A simulator, introduced as MCOS, is developed to enable large scale Monte Carlo tests of these PKI designs. This work concludes that once a receiver has been deployed with a set of preinstalled encrypted public keys, a strictly over‐the‐air method of delivering PKI information is feasible for SBAS data authentication in nominal conditions. This work also provides a strong candidate PKI that is designed to be standardized internationally for current and future SBAS service providers.

中文翻译：

---

SBAS数据认证的公钥基础结构的设计和分析

它与任何身份验证系统集成在一起，是其公钥基础结构（PKI）的设计，该系统允许系统分发，维护和撤消加密密钥，同时在不同实体之间划分和分配安全责任。本文针对两种SBAS候选认证方案开发了一种PKI：一种针对L5 I通道和Q通道实施方案。开发了一种称为MCOS的模拟器，以支持对这些PKI设计进行大规模的蒙特卡洛测试。这项工作得出的结论是，一旦为接收器部署了一组预安装的加密公共密钥，对于名义条件下的SBAS数据身份验证，一种严格的空中传输PKI信息的方法是可行的。