Cryptology ePrint Archive: Report 2014/600

DTKI: a new formalized PKI with no trusted parties

Jiangshan Yu and Vincent Cheval and Mark Ryan

Abstract: The security of public key validation protocols for web-based applications has recently attracted attention because of weaknesses in the certificate authority model, and consequent attacks.

Recent proposals using public logs have succeeded in making certificate management more transparent and verifiable. How- ever, those proposals involve a fixed set of authorities which create a monopoly, and they have heavy reliance on trusted parties that monitor the logs.

We propose a distributed transparent key infrastructure (DTKI), which greatly reduces the monopoly of service providers and removes the reliance on trusted parties. In addition, this paper formalises the public log data structure and provides a formal analysis of the security that DTKI guarantees.

Category / Keywords: public-key cryptography / PKI, certificate security

Date: received 5 Aug 2014

Contact author: jxy223 at cs bham ac uk

Available format(s): PDF | BibTeX Citation

Version: 20140811:042447 (All versions of this report)

Discussion forum: Show discussion | Start new discussion

[ Cryptology ePrint archive ]