A delayed commitment scheme to enhance public key certificate based protocols

被引:0
|
作者
Wen, W [1 ]
机构
[1] Sci Univ Tokyo, Noda, Chiba 2788510, Japan
来源
IEEE 9TH INTERNATIONAL WORKSHOPS ON ENABLING TECHNOLOGIES: INFRASTRUCTURE FOR COLLABORATIVE ENTERPRISES, PROCEEDINGS | 2000年
关键词
D O I
10.1109/ENABL.2000.883725
中图分类号
TP39 [计算机的应用];
学科分类号
081203 ; 0835 ;
摘要
Public key certificate based protocols depend on the freshness of the certificates for their security. It has been pointed out by various authors that current Public Key Infrastructure (PKI) does not provide effective freshness proof for certificates. An "ex-employee" who has access to the private key of a compromised server certificate can mount an attack on the SSL/TLS handshake protocol and eavesdrop the subsequent secret communication even if the server uses a fresh certificate[2]. In this paper we propose an improved handshake protocol which requires minimum change to the current SSL/TLS handshake protocol, yet practically prevent the above "ex-employee" attack.
引用
收藏
页码:181 / 182
页数:2
相关论文
共 50 条
  • [1] Security of public key certificate based authentication protocols
    Wen, W
    Saito, T
    Mizoguchi, F
    [J]. PUBLIC KEY CRYTOGRAPHY, 2000, 1751 : 196 - 209
  • [2] Efficient certificate-based public-key encryption scheme
    Kang, Li
    Tang, Xiao-Hu
    Fan, Jia
    [J]. Tien Tzu Hsueh Pao/Acta Electronica Sinica, 2008, 36 (10): : 2055 - 2059
  • [3] Certificate-Based Authenticated Key Agreement Protocols
    Nabil, Mohamed
    Abouelseoud, Yasmine
    Elkobrosy, Galal
    Abdelrazek, Amr
    [J]. 2013 INTERNATIONAL CONFERENCE ON COMPUTER APPLICATIONS TECHNOLOGY (ICCAT), 2013,
  • [4] A New Self-Generated-Certificate Public Key Encryption Scheme with Flexible Public Key
    Zhao Yanhui
    Xu Maozhi
    Shen Xunxun
    [J]. CHINA COMMUNICATIONS, 2011, 8 (02) : 12 - 20
  • [5] New key escrow scheme based on digital certificate
    Xie, Dong-Qing
    Xiong, Zheng-Guang
    Li, Chao
    [J]. Hunan Daxue Xuebao/Journal of Hunan University Natural Sciences, 2001, 28 (06):
  • [6] A new public key certificate revocation scheme based on one-way hash chain
    Li, JF
    Zhu, YF
    Pan, H
    Wei, DW
    [J]. ADVANCES IN WEB-AGE INFORMATION MANAGEMENT, PROCEEDINGS, 2005, 3739 : 670 - 675
  • [7] A Light-Weight Certificate-Less Public Key Cryptography Scheme Based on ECC
    Yao, Xuanxia
    Han, Xiaoguang
    Du, Xiaojiang
    [J]. 2014 23RD INTERNATIONAL CONFERENCE ON COMPUTER COMMUNICATION AND NETWORKS (ICCCN), 2014,
  • [8] CR-BA: Public Key Infrastructure Certificate Revocation Scheme Based on Blockchain and Accumulator
    Xie, Jingxue
    Tan, Xinghong
    Tan, Liang
    [J]. SECURITY AND COMMUNICATION NETWORKS, 2022, 2022
  • [9] An agent based certificate revocation scheme for public key management in mobile and wireless adhoc networks
    Munirajan, Vignesh Kumar
    Cole, Eric
    [J]. PROCEEDINGS OF THE 10TH IASTED INTERNATIONAL CONFERENCE ON INTERNET AND MULTIMEDIA SYSTEMS AND APPLICATIONS, 2006, : 132 - +
  • [10] A non-repudiable bitstring commitment scheme based on a public-key cryptosystem
    Castellà-Roca, J
    Domingo-Ferrer, J
    [J]. ITCC 2004: INTERNATIONAL CONFERENCE ON INFORMATION TECHNOLOGY: CODING AND COMPUTING, VOL 2, PROCEEDINGS, 2004, : 778 - 780
12345