|
|
Please login using the form on menu list.
It is required to login for Full-Text PDF.
|
Proposal and Analysis of a Distributed Online Certificate Status Protocol with Low Communication Cost
Satoshi KOGA
Kouichi SAKURAI
Publication
IEICE TRANSACTIONS on Fundamentals of Electronics, Communications and Computer Sciences Vol.E88-A No.1 pp.247-254
Publication Date: 2005/01/01
Online ISSN:
Print ISSN: 0916-8508
Type of Manuscript: Special Section PAPER (Special Section on Cryptography and Information Security)
Category: Application
Keyword:
Public Key Infrastructure,
Online Certificate Status Protocol,
distributed OCSP,
key-insulated signature scheme,
Full Text: PDF(219.2KB)
Summary:
The Public Key Infrastructure (PKI) technology is very important to support the electronic commerce and digital communications on existing networks. The Online Certificate Status Protocol (OCSP) is the standard protocol for retrieving certificate revocation information in the PKI. To minimize the damages caused by OCSP responder's private key exposure, a distributed OCSP composed of multiple responders is needed. This paper presents a new distributed OCSP with a single public key by using key-insulated signature scheme. In proposed distributed OCSP, each responder has the different private key, but corresponding public key remains fixed. Therefore the user simply obtains and stores one certificate, and can verify any responses by using a single public key.
|
|
