Evaluation of certificate revocation policies: OCSP vs. Overissued-CRL

Proceedings - International Workshop on Database and Expert Systems Applications, DEXA

Volumn 2002-January, Issue , 2002, Pages 511-515

  Muñoz, Jose L ^a   Forne, Jordi ^a   Castro, Juan C ^a  

^a UNIVERSITAT POLITÈCNICA DE CATALUNYA   (Spain)

Author keywords

Access control; Authentication; Bandwidth; Costs; Information security; Public key; Public key cryptography; Scalability; Telematics; Web and internet services

Indexed keywords

ACCESS CONTROL; AUTHENTICATION; BANDWIDTH; COSTS; CRYPTOGRAPHY; EXPERT SYSTEMS; INTERNET; SCALABILITY; SECURITY OF DATA; WEB SERVICES; WIRELESS TELECOMMUNICATION SYSTEMS;

CERTIFICATE REVOCATION; INTERNET SECURITY; INTERNET SERVICES; OVER-ISSUED CRL; PUBLIC KEYS; TELEMATICS;

PUBLIC KEY CRYPTOGRAPHY;

EID: 84888791839     PISSN: 15294188     EISSN: None     Source Type: Journal    
DOI: 10.1109/DEXA.2002.1045949     Document Type: Article

References (15)

1. A. Arsenault and S. Turner. Internet X 509 Public Key Infrastructure PKIX Roadmap, 1999. IETF Internet Draft. Draft-ietf-pkix-roadmap-06.txt
2. D. Cooper. A model of certificate revocation. In Fifteenth Annual Computer Security Applications Conference, pages 256-264, 1999
3. D. Cooper. A more efficient use of Delta-CRLs. In 2000 IEEE Symposium on Security and Privacy. Computer Security Division of NIST, pages 190-202, 2000
4. B. Fox and B. LaMacchia. Online Certificate Status Checking in Financial Transactions: The Case for Reissuance. In International Conference on Financial Cryptography (FC99), number 1648, pages 104-117, Feb. 1999
5. P. Hallam-Baker. OCSP extensions, 1999. Internet Draft: dr aft-ietf-pkix-ocspx-00. txt
6. R. Housley, W. Ford, W. Polk, and D. Solo. Internet X 509 Public Key Infrastructure Certificate and CRL Profile, 1999. RFC 2459
7. H. Kikuchi, K. Abe, and S. Nakanishi. Performance evaluation of public-key certificate revocation system with balanced hash tree. In Second International Workshop on Information Security (ISW 99), pages 103-117. Springer-Verlag, 2000
8. L. Kleinrock. Queuing Systems. Volume I: Theory. John Wiley andSons, 1975
9. P. Kocher. On certificate revocation and validation. In International Conference on Financial Cryptography (FC98). Lecture Notes in Computer Science, number 1465, pages 172-177, Feb. 1998
10. A. Malpani, P. Hoffman, P. Housley, and T. Freeman. Simple Certification Validation Protocol (SCVP), 2002. Internet Draft: draft-ietf-pkix-scvp-08.txt
11. S. Micali. Efficient certificate revocation. Technical Report TM-542b, MIT Laboratory for Computer Science, 1996
12. M. Myers, R. Ankney, and C. Adams. Online Certificate Certificate Status Protocol, Version 2, 2000. IETF Internet Draft. Draft-ietf-pkix-ocspv2-00.txt
13. M. Myers, R. Ankney, A. Malpani, S. Galperin, and C. Adams. X 509 Internet Public Key Infrastructure Online Certificate Status Protocol-OCSP, 1999. RFC 2560
14. M. Naor and K. Nissim. Certificate revocation and certificate update. In 7th USENIX Security Symposium, 1998
15. I. R. X 509. Information technology Open Systems Interconnection-The Directory: Public Key and Attribute Certificate Frameworks, 1997