• DocumentCode
    442062
  • Title

    A scalable scheme for certificate revocation

  • Author

    Li, Bao-Hong ; Hou, Yi-Bin ; Zhao, Yin-Liang

  • Author_Institution
    Dept. of Comput. Sci. & Technol., Xi´´an Jiaotong Univ., China
  • Volume
    6
  • fYear
    2005
  • fDate
    18-21 Aug. 2005
  • Firstpage
    3852
  • Abstract
    This paper proposes a scalable scheme for certificate revocation in public key infrastructure. In this scheme, the set of revoked certificates is divided into groups. In each group, proofs for certificate status are computed using one-way accumulators, while all groups are still organized in a hash tree. The main advantage of the proposed scheme is that it can adjust traffic between CA-to-directory and directory-to-user according to certificate update rate and query rate in applications, thus overall traffic for certificate revocation can be remarkably reduced and a wider range of scenarios can be accommodated. Compared with Naor´s dynamic hash tree scheme, results show it can reduce traffic by about 50% in typical environments.
  • Keywords
    certification; message authentication; public key cryptography; tree data structures; certificate revocation; hash tree; message authentication; public key infrastructure; Cities and towns; Cybernetics; Data structures; Dictionaries; Information security; Large-scale systems; Machine learning; Public key; Software engineering; Traffic control; Certificate revocation; certificate dictionary; dynamic hash tree; on-way accumulators;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Machine Learning and Cybernetics, 2005. Proceedings of 2005 International Conference on
  • Conference_Location
    Guangzhou, China
  • Print_ISBN
    0-7803-9091-1
  • Type

    conf

  • DOI
    10.1109/ICMLC.2005.1527611
  • Filename
    1527611
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=442062