On the complexity of public-key certificate validation

Item Type: Proceeding
MIUR type: Proceedings > Proceedings
Title: On the complexity of public-key certificate validation
Authors string: Berbecaru D.; Lioy A.; Marian M.
University authors:
Page Range: pp. 183-203
Referee type: Not specified type
Publisher: Springer
ISBN: 3540426620
ISSN: 0302-9743
Volume: 2200
Event Title: Information Security 4th International Conference, ISC 2001
Event Location: Malaga (ESP)
Event Dates: October 1–3, 2001
Abstract: Public-key infrastructures are increasingly being used as foundation for several security solutions, such as electronic documents, secure e-mail (S/MIME), secure web transactions (SSL), and many others. However, there are still many aspects that need careful consideration before these systems can really be used on a very large scale. In this respect, one of the biggest issues to solve is certificate validation in a generic multi-issuer certification environment. This paper begins by introducing the problem, also with the help of a famous security incident related to certificate validation, and then proceeds to review the user and system requirements. We take into account several constraints, such as computational power of the end-user client (workstation, PDA, cellular phone), network connectivity (permanent or intermittent, high or low speed) and security policy to be respected (personal or company-wide trust). We then proceed to define a general certificate validation architecture and show how several proposed certificate management formats and protocols can be used within this general architecture and which are the relative merits and drawbacks. Finally, the support offered by commercial products to certificate validation is analyzed, and the path towards better solutions for an effective deployment of certificates is sketched
Date: 2001
Status: Published
Language of publication: English
Uncontrolled Keywords:
Departments (original): DAUIN - Control and Computer Engineering
Departments: DAUIN - Department of Control and Computer Engineering
Related URLs:
    Subjects: Area 09 - Ingegneria industriale e dell'informazione > SISTEMI DI ELABORAZIONE DELLE INFORMAZIONI
    Date Deposited: 12 Mar 2008 12:29
    Last modification data (IRIS): 25 Nov 2013 11:57:43
    Update date (PORTO): 27 Oct 2014 08:40
    Id Number (DOI): 10.1007/3-540-45439-X_13
    Permalink: http://porto.polito.it/id/eprint/1728517
    Link resolver URL: Linksolver link

    This field presents the citations number present on Scopus and Web of Science databases e links to the remote records. Also Google Scholar link is present.

    There may be discrepancies with respect to the data in databases for the following reasons:

    • Differences from fields (title, year,...) in UGOV and those in the databases.
    • PORTO citations are extracted monthly. The db is in real time
    • The WoS citation number reflect the collections subscribed by Politecnico (Science citation index Expanded and Conference Proceedings Citation Index)

    For informations contact scrivia/porto



    [img] PDF (1728517) - Postprint
    Document access: Not visible (accessible only to the record owner)
    Licence: Not public - Private access / Restricted.

    Download (214Kb) | Send a request to the author for a copy of the paper

    Actions (login required)

    View item (admin reserved) View item (admin reserved)