TY - GEN
T1 - Optimal CRL releasing strategy in public key infrastructure
AU - Ma, Chengyu
AU - Hu, Nan
AU - Li, Yingjiu
PY - 2006
Y1 - 2006
N2 - Public key infrastructure has been proposed as a promising foundation for verifying the authenticity of communicating parties and transferring trust over the internet. One of the key issues in public key infrastructure is how to manage certificate revocations. Various technical solutions dealing with key revocation have been proposed. However, to the best of our best knowledge, no rigorous efforts have been made to understand the behavior of certificate revocation requests based on empirical data. Furthermore, there is no study on the managerial aspect of Certificate Revocation Release. In this study, based on the empirical data collected from Veri Sign, we prove that a revocation system will become stable after a period of time. We show that different certificate authorities should take different strategies for releasing different types of certificate revocations. We also provide the exact steps by which certificate authorities can follow to derive optimal releasing strategies.
AB - Public key infrastructure has been proposed as a promising foundation for verifying the authenticity of communicating parties and transferring trust over the internet. One of the key issues in public key infrastructure is how to manage certificate revocations. Various technical solutions dealing with key revocation have been proposed. However, to the best of our best knowledge, no rigorous efforts have been made to understand the behavior of certificate revocation requests based on empirical data. Furthermore, there is no study on the managerial aspect of Certificate Revocation Release. In this study, based on the empirical data collected from Veri Sign, we prove that a revocation system will become stable after a period of time. We show that different certificate authorities should take different strategies for releasing different types of certificate revocations. We also provide the exact steps by which certificate authorities can follow to derive optimal releasing strategies.
KW - Certificate revocation list
KW - Public key certificate
KW - Public key infrastructure
UR - https://www.scopus.com/pages/publications/84870324722
M3 - 会议稿件
AN - SCOPUS:84870324722
SN - 9781604236262
T3 - Association for Information Systems - 12th Americas Conference On Information Systems, AMCIS 2006
SP - 3312
EP - 3323
BT - Association for Information Systems - 12th Americas Conference On Information Systems, AMCIS 2006
T2 - 12th Americas Conference on Information Systems, AMCIS 2006
Y2 - 4 August 2006 through 6 August 2006
ER -