Certification Authorities Under Attack: A Plea for Certificate Legitimation

被引:9
作者
Oppliger, Rolf [1 ]
机构
[1] ESecur Technol, Singapore, Singapore
关键词
certificate authorization; certificate legitimation; certificate revocation; Internet security; man-in-the-middle attack; public-key certificates; public-key infrastructure; SSL; TLS;
D O I
10.1109/MIC.2013.5
中图分类号
TP31 [计算机软件];
学科分类号
081205 [计算机软件];
摘要
Several recent attacks against certification authorities (CAs) and fraudulently issued certificates have called into question the Internet public-key infrastructure's security and usefulness. Because such attacks are likely to occur repeatedly, countermeasures must be designed, implemented, and put in place. Two particular problem areas in which countermeasures are needed are certificate revocation and certificate authorization. These related areas, which can be subsumed under the term "certificate legitimation," are the subject of several recent proposals and are ripe for new areas of research and development.
引用
收藏
页码:40 / 47
页数:8
相关论文
共 21 条
[1]
Anderson Ross J., 1999, GLOBAL INTERNET TRUS
[2]
[Anonymous], 1999, 2560 IETF RFC
[3]
[Anonymous], 6698 IETF RFC
[4]
[Anonymous], 2008, 5280 IETF RFC
[5]
[Anonymous], 2005, 4033 IETF RFC
[6]
Barnes R., 2011, 6394 IETF RFC
[7]
ELLEY Y, 2001, P 2001 NETW DISTR SY, P153
[8]
Ellison C., 2000, Computer Security Journal, V16, P1
[9]
Evans C., 2013, PUBLIC KEY IN PRESS
[10]
PKI: It's not dead, just resting [J].
Gutmann, P .
COMPUTER, 2002, 35 (08) :41-+