Title :
Certificate revocation the responsible way
Author :
Millen, Jonathan K. ; Wright, Rebecca N.
Author_Institution :
SRI Int., CA, USA
Abstract :
Public-key certificates are managed by a combination of the informal web of trust and the use of servers maintained by organizations. Prompt and reliable distribution of revocation notices is an essential ingredient for security in a public-key infrastructure. Current schemes based on certificate revocation lists on key servers are inadequate. An approach based on distributing revocation notices to “dependers” on each certificate, with cascading forwarding, is suggested. Research is necessary to investigate architectural issues, particularly reliability and response time analysis
Keywords :
public key cryptography; certificate revocation; key servers; public-key certificates; reliability; response time analysis; revocation notices; Authentication; Business; Cryptography; Data security; Digital signatures; IP networks; Privacy; Protection; Public key; Telecommunication network reliability;
Conference_Titel :
Computer Security, Dependability and Assurance: From Needs to Solutions, 1998. Proceedings
Conference_Location :
York, UK ; Williamsburg, VA
Print_ISBN :
0-7695-0337-3
DOI :
10.1109/CSDA.1998.798366
