Paper 2007/178

Utility Sampling for Trust Metrics in PKI

Dakshi Agrawal and Charanjit Jutla

Abstract

We propose a new trust metric for a network of public key certificates, e.g. as in PKI, which allows a user to buy insurance at a fair price on the possibility of failure of the certifications provided while transacting with an arbitrary party in the network. Our metric builds on a metric and model of insurance provided by Reiter and Stubblebine~\cite{RS}, while addressing various limitations and drawbacks of the latter. It conserves all the beneficial properties of the latter over other schemes, including protecting the user from unintentional or malicious dependencies in the network of certifications. Our metric is built on top of a simple and intuitive model of trust and risk based on ``utility sampling'', which maybe of interest for non-monetary applications as well.

Metadata
Available format(s)
PS
Publication info
Published elsewhere. Unknown where it was published
Keywords
Public KeysPKICertificatesTrustInsurance
Contact author(s)
csjutla @ us ibm com
History
2007-05-20: received
Short URL
https://ia.cr/2007/178
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2007/178,
      author = {Dakshi Agrawal and Charanjit Jutla},
      title = {Utility Sampling for Trust Metrics in PKI},
      howpublished = {Cryptology ePrint Archive, Paper 2007/178},
      year = {2007},
      note = {\url{https://eprint.iacr.org/2007/178}},
      url = {https://eprint.iacr.org/2007/178}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.