Referenced Items are not available for this document.
Public Key Infrastructure (PKI) is a key infrastructure for secure communications and transactions on the Internet. We revisit the problem of timely certificate revocation and develop a performance analysis framework with more realistic assumptions of when certificates are revoked, a query model differentiating revoked and unrevoked certificates, and realistic cost factors. Our analysis is fine-grained and shows the impact of a revocation scheme on the computation, storage and bandwidth costs particularly on mobile devices as the verifiers. We apply our performance framework to analyze the following schemes: CRL, OCSP, CRS and CREV. Our analysis shows clearly the strengths and weaknesses of each scheme particularly for mobile lightweight verifiers under higher timeliness guarantees.
Published in:
Security Measurements and Metrics (Metrisec), 2011 Third International Workshop on
Date of Conference: 21-21 Sept. 2011
- Page(s):
- 31 - 40
- Print ISBN:
- 978-1-4673-1245-5
- INSPEC Accession Number:
- 12578710
- Conference Location :
- Banff, AB
- Digital Object Identifier :
- 10.1109/Metrisec.2011.17
- Product Type:
- Conference Publications
About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies
A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2013 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.
