Establishing and managing trust within the public key infrastructure

Computer Communications

Volumn 26, Issue 16 SPEC., 2003, Pages 1815-1825

  Lekkas, Dimitrios ^a  

^a UNIVERSITY OF THE AEGEAN   (Greece)

Author keywords

Qualified policy; Quality; Security; Trust; Trusted third party

Indexed keywords

DATABASE SYSTEMS; INFORMATION MANAGEMENT; INFORMATION SERVICES; INTERNET; PUBLIC POLICY; RISKS;

PUBLIC KEY INFRASTRUCTURE (PKI);

PUBLIC KEY CRYPTOGRAPHY;

EID: 0041376599     PISSN: 01403664     EISSN: None     Source Type: Journal    
DOI: 10.1016/S0140-3664(03)00077-X     Document Type: Article

References (18)

1. International Telecommunication Union, X-509/ISO/IEC 9594-8, The directory: Public-key and attribute certificate frameworks, ITU, X-Series, Available at http://www.itu.int, 2001.
2. Giddens A. The Consequences of Modernity. 1991;Polity Press, UK. pp. 29-36 and 83-111.
3. Ba S. Establishing online trust through a community responsibility system. Decision Support Systems. 31:2001;323-336.
4. Fernandes A. Risking trust in a public key infrastructure: old techniques of managing risk applied to new technology. Decision Support Systems. 31:2001;303-322.
5. Vincent B. The social structure of trust. Social Networks. 20:(3):1998;265-289.
6. Zimmermann Ph. Pretty Good Privacy - Public Key Encryption for the Masses, PGP User's Guide, PGP Version 2.6.1. vols. 1 and 2:1995;MIT Press, Cambridge, MA.
7. Menezes A., Oorschot P., Vanstone S. Handbook of applied Cryptography. Series on Discrete Mathematics and its Applications. 1997;CRC Press, West Palm Beach, FL, USA.
8. Alterman P. The US Federal PKI and the Federal Bridge Certification Authority. Computer Networks. 37:2001;685-690.
9. Chadwick D.W., Basden A. Evaluating trust in a public key certification authority. Computer and Security. 20:(7):2001;592-611.
10. Chokhani, W. Ford, Internet X.509 Public Key Infrastructure Certificate Policy and Certification Practices Framework, Request for Comments 2527, IETF, March 1999.
11. ISO 8402 Quality management and quality assurance - Vocabulary 1994.
12. Besterfield D.H., Besterfield-Michna C., Besterfield G., Besterfield-Sacre M. Total Quality Management. 1995;Prentice Hall, Englewood Cliffs, NJ, USA.
13. Gritzalis S., Katsikas S., Lekkas D., Moulinos K., Polydorou E. Securing The Electronic Market: The KEYSTONE Public Key Infrastructure Architecture. Computers and Security Journal. 19:(8):2000;731-746.
14. Hoyle D. ISO-9000 Quality Systems Handbook. third ed. 1998;Butterworth-Heinemann, Oxford, UK.
15. ETSI, Policy requirements for certification authorities issuing qualified certificates Draft TS 101 456, European Telecommunications Standards Institute, 2001.
16. S. Santesson, W. Polk, P. Barzin, M. Nystrom, Internet X.509 Public Key Infrastructure, Qualified Certificates Profile Request for Comments 3039, IETF, January 2001.
17. Directive 1999/93/EC of the European Parliament and of the Council, Community Framework for Electronic Signatures, December 1999.
18. A. Farrukh, Security Requirements for Trustworthy Systems Managing Certificates for Electronic Signatures, CEN/ISSS Workshop on Electronic Signatures, Draft CWA 14167-1, July 2001.