Skip to main content
USENIX
  • Conferences
  • Students
Sign in

connect with us


  •  Twitter
  •  Facebook
  •  LinkedIn
  •  Google+
  •  YouTube

twitter

Tweets by @usenix

usenix conference policies

  • Event Code of Conduct
  • Conference Network Policy
  • Statement on Environmental Responsibility Policy

You are here

Home ยป Certificate Revocation and Certificate Update
Tweet

connect with us

Certificate Revocation and Certificate Update

Authors: 

Moni Naor and Kobbi Nissim, Weizmann Institute of Science

Abstract: 

A new solution is suggested for the problem of certificate revocation. This solution represents Certificate Revocation Lists by an authenticated search data structure. The process of verifying whether a certificate is in the list or not, as well as updating the list, is made very efficient. The suggested solution gains in scalability, communication costs, robustness to parameter changes and update rate. Comparisons to the following solutions are included: `traditional' CRLs (Certificate Revocation Lists), Micali's Certificate Revocation System (CRS) and Kocher's Certificate Revocation Trees (CRT).

Finally, a scenario in which certificates are not revoked, but frequently issued for short-term periods is considered. Based on the authenticated search data structure scheme, a certificate update scheme is presented in which all certificates are updated by a common message.

The suggested solutions for certificate revocation and certificate update problems is better than current solutions with respect to communication costs, update rate, and robustness to changes in parameters and is compatible e.g. with X.500 certificates.

Moni Naor, Weizmann Institute of Science

Kobbi Nissim, Weizmann Institute of Science

BibTeX
@inproceedings {261407,
author = {Moni Naor and Kobbi Nissim},
title = {Certificate Revocation and Certificate Update},
booktitle = {7th USENIX Security Symposium (USENIX Security 98)},
year = {1998},
address = {San Antonio, TX},
url = {https://www.usenix.org/conference/7th-usenix-security-symposium/certificate-revocation-and-certificate-update},
publisher = {USENIX Association},
month = jan,
}
Download

Links

Paper: 
http://usenix.org/publications/library/proceedings/sec98/full_papers/nissim/nissim.pdf
Paper (HTML): 
http://usenix.org/publications/library/proceedings/sec98/full_papers/nissim/nissim_html/nissim.html
  • Log in or    Register to post comments

© USENIX

  • Privacy Policy
  • Contact Us