Paper 2017/526

Evaluating web PKIs - A Survey

Jiangshan Yu and Mark Ryan

Abstract

Certificate authorities serve as trusted parties to help secure web communications. They are a vital component for ensuring the security of cloud infrastructures and big data repositories. Unfortunately, recent attacks using mis-issued certificates show this model is severely broken. Much research has been done to enhance certificate management in order to create more secure and reliable cloud architectures. However, none of it has been widely adopted yet, and it is hard to judge which one is the winner. This chapter provides a survey with critical analysis on the existing proposals for managing public key certificates. This evaluation framework would be helpful for future research on designing an alternative certificate management system to secure the internet.

Note: Published as a book chapter.

Metadata
Available format(s)
PDF
Publication info
Published elsewhere. Software Architecture for Big Data and the Cloud Software (1st Edition)
Keywords
PKI
Contact author(s)
j yu research @ gmail com
History
2017-11-14: last of 3 revisions
2017-06-05: received
See all versions
Short URL
https://ia.cr/2017/526
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2017/526,
      author = {Jiangshan Yu and Mark Ryan},
      title = {Evaluating web PKIs - A Survey},
      howpublished = {Cryptology ePrint Archive, Paper 2017/526},
      year = {2017},
      note = {\url{https://eprint.iacr.org/2017/526}},
      url = {https://eprint.iacr.org/2017/526}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.