A Reliable, Scalable General-Purpose Certificate Store
نویسنده
چکیده
Although there have been various proposals to build large-scale PKIs, there appears to be no research publicly available on the underlying certificate store which will be required to support such a PKI. This paper analyses the requirements for, and presents the design of, a generalpurpose certificate store which places few constraints on the underlying computer hardware or operating system used, provides a high degree of scalability (from single end users up to the corporate/CA level), and provides the level of reliability, availability, and error recovery required of such an application and stipulated in a number of standards which cover CA operation.
منابع مشابه
Scalable Policy Driven and General Purpose Public Key Infrastructure (PKI)
This paper describes a flexible and general purpose PKI platform providing an easily interoperable security infrastructure. Developed at AT&T Labs, the architecture is part of the UCAID/Internet2 efforts in PKI and scalable security. The architecture can host multiple certificate authorities (CAs) from different vendors in a uniform and scalable manner. This facilitates scalable operation with ...
متن کاملYalta: A Dynamic PKI and Secure Tuplespaces for Distributed Coalitions
The Yalta project has developed a scalable, reliable application platform for distributed coalitions. The key components of this infrastructure are a reliable, secure tuplespace service, an intrusion-tolerant, threshold-based certificate authority, and a scalable certificate revocation and event notification service. These components combine to provide a highly transparent security infrastructu...
متن کاملTowards Social Profile Based Overlays
Online social networking has quickly become one of the most common activities of Internet users. As social networks evolve, they encourage users to share more information, requiring the users, in turn, to place more trust into social networks. Peer-to-peer (P2P) overlays provide an environment that can return ownership of information, trust, and control to the users, away from centralized third...
متن کاملEPA: An efficient and privacy-aware revocation mechanism for vehicular ad hoc networks
Security is vital for the reliable operation of vehicular ad hoc networks (VANETs). One of the critical security issues is the revocation of misbehaving vehicles. While essential, revocation checking can leak private information. In particular, repositories receiving the certificate status queries could infer the identity of the vehicles posing the query and the target of the query. An importan...
متن کاملScalable Atomic Primitives for Distributed Shared Memory Multiprocessors
Our research addresses the general topic of atomic update of shared data structures on large-scale shared-memory multiprocessors. In this paper we consider alternative implementations of the general-purpose single-address atomic primitives fetch and , compare and swap, load linked, and store conditional. These primitives have proven popular on small-scale bus-based machines, but have yet to bec...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2000