From 3063c59f568cefd65cef226202791e30aaf18215 Mon Sep 17 00:00:00 2001
From: Zhi Guan <guanzhi1980@gmail.com>
Date: Thu, 12 May 2016 17:06:33 +0200
Subject: [PATCH] =?UTF-8?q?Updated=20SM9=E8=BA=AB=E4=BB=BD=E5=AF=86?=
 =?UTF-8?q?=E7=A0=81=20(markdown)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 SM9身份密码.md | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/SM9身份密码.md b/SM9身份密码.md
index 4d94406..d0be4ad 100644
--- a/SM9身份密码.md
+++ b/SM9身份密码.md
@@ -1 +1,11 @@
-todo
\ No newline at end of file
+SM9是国密标准中基于身份的密码，在国密SSL VPN规范中采用了基于SM9的密钥交换(IBSDH)和密钥传输(IBC)密码套件。SM9的算法标准尚未公布，就公开的信息仅可以知道SM9是基于Pairing的算法。由于基于Pairing的身份加密和密钥交换方案并不多，因此GmSSL参考相关国际标准，如RFC 5091、5048、6539等，暂时提供SM9的可选（伪）实现，在其算法标准公布之后再替换为符合标准的实现。
+
+GmSSL的SM9实现主要提供如下功能：
+1. SM9的OID定义和接口定义
+2. SM9的ENGINE
+3. SSL的SM9密码套件
+
+### 参考
+1. [RFC 5091] Identity-Based Cryptography Standard (IBCS) #1: Supersingular Curve Implementations of the BF and BB1 Cryptosystems.
+2. [RFC 5408] Identity-Based Encryption Architecture and Supporting Data Structures.
+3. [RFC 6539] IBAKE: Identity-Based Authenticated Key Exchange.
\ No newline at end of file