An Extended OCSP Protocol for Grid CA Cross-certification

Author

Zhang, Shaomin ; Gong, Huitao ; Wang, Baoyi

Author_Institution

Sch. of Comput., North China Electr. Power Univ., Baoding, China

fYear

2006

fDate

1-3 Nov. 2006

Firstpage

105

Lastpage

105

Abstract

In grid environment, there are many administrative domains, each domain has its own CA, and entities in different domains need authentication when accessing each other. The OCSP (Online Certificate Status Protocol) stands out due to its ability to carry near real time certificate status information and meet the need of grid. The paper proposes an extended OCSP protocol that can provide trust status for certificate to benefit the certificate validation between different domains. We describe the extended OCSP protocol, the realization framework and the work mechanism. An extended OCSP responder is built to verify the feasibility of the extended OCSP protocol for grid.

Keywords

Internet; authorisation; certification; grid computing; protocols; trusted computing; Certificate Authority; authentication; certificate validation; extended OCSP protocol; extended OCSP responder; grid CA cross-certification; grid environment; online certificate status protocol; real-time certificate status information; realization framework; trust status; work mechanism;

fLanguage

English

Publisher

ieee

Conference_Titel

Semantics, Knowledge and Grid, 2006. SKG '06. Second International Conference on

Conference_Location

Guilin

Print_ISBN

0-7695-2673-X

Type

conf

DOI

10.1109/SKG.2006.22

Filename

5727742