Cart (Loading....) | Create Account
Close category search window
 

Key Exchange (KX) - a next generation protocol to synchronise PGP Keyservers

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

2 Author(s)
von Bidder, A. ; Swiss Fed. Inst. of Technol., Zurich, Switzerland ; Weiler, N.

In the Internet, securing email has always been an important issue. Various standards and products have been created. One of the most successful standards is OpenPGP by J. Callas et al. (1998), which uses public key cryptography (R. L. Rivest et al. (1977) and others) and is implemented in systems like Pretty Good Privacy according to P. Zimmerman (1995), Gnu Privacy Guard by W. Koch, Hushmail, and others. A well-known difficulty with the use of public key cryptographic systems is the verification and distribution of the public keys. OpenPGP solves the problem of verifying the authenticity of a public key by having users certify each others keys, building a "Web of Trust" described by P. Feisthammel (1997) by bundling these key certificates with each users public key. Therefore, adding a new public key and updating an existing public key (or replacing it by a new version) are the two most important operations of any PGP public key repository. To allow easy distribution of PGP public keys, the OpenPGP community established a network of open access public keyservers, allowing users of OpenPGP software to freely exchange public keys. The nodes of this keyserver network synchronise their database by exchanging new public keys and key updates amongst each other, virtually building one global key database. At the moment, this synchronisation is done with an inefficient and ineffective email based protocol. This paper describes the implementation of an alternative protocol - KX - on the popular pksd keyserver according to M. Horowitz (1997), based on direct TCP connections between the keyservers and unambiguous identifiers for every key update or new key. With the dropping of the dependency on a working mail system and the improved fault mechanisms, KX is a lightweight alternative in terms of used network, disk and CPU resources.

Published in:

Enabling Technologies: Infrastructure for Collaborative Enterprises, 2003. WET ICE 2003. Proceedings. Twelfth IEEE International Workshops on

Date of Conference:

9-11 June 2003

Need Help?


IEEE Advancing Technology for Humanity About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies

A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2014 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.