![](/images/graphics-bg.png)
Accountable and Transparent TLS Certificate Management: An Alternate Public-Key Infrastructure with Verifiable Trusted Parties
Joint Authors
Li, Meng
Zhu, Liehuang
Zhang, Zijian
Khan, Salabat
Khan Safi, Qamas Gul
Chen, Xiaobing
Source
Security and Communication Networks
Issue
Vol. 2018, Issue 2018 (31 Dec. 2018), pp.1-16, 16 p.
Publisher
Hindawi Publishing Corporation
Publication Date
2018-07-18
Country of Publication
Egypt
No. of Pages
16
Main Subjects
Information Technology and Computer Science
Abstract EN
Current Transport Layer Security (TLS) Public-Key Infrastructure (PKI) is a vast and complex system; it consists of processes, policies, and entities that are responsible for a secure certificate management process.
Among them, Certificate Authority (CA) is the central and most trusted entity.
However, recent compromises of CA result in the desire for some other secure and transparent alternative approaches.
To distribute the trust and mitigate the threats and security issues of current PKI, publicly verifiable log-based approaches have been proposed.
However, still, these schemes have vulnerabilities and inefficiency problems due to lack of specifying proper monitoring, data structure, and extra latency.
We propose Accountable and Transparent TLS Certificate Management: an alternate Public-Key Infrastructure (PKI) with verifiable trusted parties (ATCM) that makes certificate management phases; certificate issuance, registration, revocation, and validation publicly verifiable.
It also guarantees strong security by preventing man-in-middle-attack (MitM) when at least one entity is trusted out of all entities taking part in the protocol signing and verification.
Accountable and Transparent TLS Certificate Management: an alternate Public-Key Infrastructure (PKI) with verifiable trusted parties (ATCM) can handle CA hierarchy and introduces an improved revocation system and revocation policy.
We have compared our performance results with state-of-the-art log-based protocols.
The performance results and evaluations show that it is feasible for practical use.
Moreover, we have performed formal verification of our proposed protocol to verify its core security properties using Tamarin Prover.
American Psychological Association (APA)
Khan, Salabat& Zhang, Zijian& Zhu, Liehuang& Li, Meng& Khan Safi, Qamas Gul& Chen, Xiaobing. 2018. Accountable and Transparent TLS Certificate Management: An Alternate Public-Key Infrastructure with Verifiable Trusted Parties. Security and Communication Networks،Vol. 2018, no. 2018, pp.1-16.
https://search.emarefa.net/detail/BIM-1214456
Modern Language Association (MLA)
Khan, Salabat…[et al.]. Accountable and Transparent TLS Certificate Management: An Alternate Public-Key Infrastructure with Verifiable Trusted Parties. Security and Communication Networks No. 2018 (2018), pp.1-16.
https://search.emarefa.net/detail/BIM-1214456
American Medical Association (AMA)
Khan, Salabat& Zhang, Zijian& Zhu, Liehuang& Li, Meng& Khan Safi, Qamas Gul& Chen, Xiaobing. Accountable and Transparent TLS Certificate Management: An Alternate Public-Key Infrastructure with Verifiable Trusted Parties. Security and Communication Networks. 2018. Vol. 2018, no. 2018, pp.1-16.
https://search.emarefa.net/detail/BIM-1214456
Data Type
Journal Articles
Language
English
Notes
Includes bibliographical references
Record ID
BIM-1214456