摘要: Digital Certificates are central to the concept of Public Key Infrastructures (PKI) and serve as a cryptographic proof one’s public key. Occasionally, certificates must be declared invalid prior their due expiration date in case key compromise or change identity. Thus all PKIs should provide mechanism through which an issued certificate may revoked. The revocation mechanisms commonly classified into Certificate Revocation Lists (CRLs), trusted dictionaries online mechanisms. We briefly discuss existing techniques then present new technique. More precisely, we alternative short lived proposed by Rivest.
springer.com
sci-hub.st 参考文章(24)
Paul C. Kocher, On Certificate Revocation and Validation financial cryptography. pp. 172- 177 ,(1998) , 10.1007/BFB0055481
Barbara Fox, Brian LaMacchia, Certificate Recocation: Mechanics and Meaning financial cryptography. pp. 158- 164 ,(1998) , 10.1007/BFB0055479
Patrick McDaniel, Aviel Rubin, A Response to ''Can We Eliminate Certificate Revocation Lists?'' financial cryptography. pp. 245- 258 ,(2000) , 10.1007/3-540-45472-1_17
S. Micali, NOVOMODO : Scalable Certificate Validation and Simplified PKI Management Proc. 1st Annual PKI Research Workshop (2002). ,(2002)
Ronald L. Rivest, Butler Lampson, SDSI - A Simple Distributed Security Infrastructure ,(1996)
Silvio Micali, Scalable certificate validation and simplified PKI management ,(2002)
Michael Myers, Revocation: Options and Challenges financial cryptography. pp. 165- 171 ,(1998)
Carl A. Gunter, Trevor Jim, Generalized certificate revocation symposium on principles of programming languages. pp. 316- 329 ,(2000) , 10.1145/325694.325736
C. Adams, M. Myers, A. Malpani, S. Galperin, R. Ankney, X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP IETF RFC 2560. ,vol. 2560, pp. 1- 23 ,(1999)
Simon L. Peyton Jones, Philip Wadler, Imperative functional programming Proceedings of the 20th ACM SIGPLAN-SIGACT symposium on Principles of programming languages - POPL '93. pp. 71- 84 ,(1993) , 10.1145/158511.158524