Title :
Application-oriented cross-CA certificate trust
Author :
Long, Yihong ; Tang, Zhihong ; Liu, Xu
Author_Institution :
Sch. of Inf. Eng., Wuhan Univ. of Technol., Wuhan, China
Abstract :
Cross-CA certificate trust is often required in the application of Public Key Infrastructure (PKI). Contrary to the CA-oriented approach for it such as cross-certification, the approach proposed in this paper is application-oriented. In the proposed scheme, various CAs and applications are connected through a number of Trust Gateways (TGWs), which form a backbone to propagate the certificate trust chains from trusted CAs to relying applications. As a result, a trust community is formed. A Community Trust Authority (CTA) acts as a root of trust of the community by asserting the root certificates of the trusted CAs and the relevant security policies. It also asserts the mappings between CAs´ private certificate policies and the public ones of the community. An application can rely on the trust built up by this system, and choose to trust certificates from specific CAs by relying on specific certificate trust chains according to its own security policies.
Keywords :
public key cryptography; application-oriented cross-CA certificate trust; certificate trust chain; community trust authority; public key infrastructure; security policy; trust gateways; Biological system modeling; Bridges; Certification; Communities; Public key; Topology; certificate trust chain; cross-CA certificate trust; cross-certificattion; public key infrastructure; trust gateway;
Conference_Titel :
Information Theory and Information Security (ICITIS), 2010 IEEE International Conference on
Conference_Location :
Beijing
Print_ISBN :
978-1-4244-6942-0
DOI :
10.1109/ICITIS.2010.5689480
