English
Related papers

Related papers: Revocation Statuses on the Internet

200 papers

The modern Internet is highly dependent on trust communicated via certificates. However, in some cases, certificates become untrusted, and it is necessary to revoke them. In practice, the problem of secure revocation is still open.…

Cryptography and Security · Computer Science 2022-03-07 Nikita Korzhitskii , Matus Nemec , Niklas Carlsson

Research in the field of electronic signature confirmation has been active for some 20 years now. Unfortunately present certificate-based solutions also come from that age when no-one knew about online data transmission. The official…

Cryptography and Security · Computer Science 2007-05-23 Jan Willemson

The ability to quickly revoke a compromised key is critical to the security of any public-key infrastructure. Regrettably, most traditional certificate revocation schemes suffer from latency, availability, or privacy problems. These…

Cryptography and Security · Computer Science 2020-09-15 Laurent Chuat , AbdelRahman Abdou , Ralf Sasse , Christoph Sprenger , David Basin , Adrian Perrig

Like any digital certificate, Verifiable Credentials (VCs) require a way to revoke them in case of an error or key compromise. Existing solutions for VC revocation, most prominently Bitstring Status List, are not viable for many use cases…

Cryptography and Security · Computer Science 2025-09-19 Felix Hoops , Jonas Gebele , Florian Matthes

In a public-key infrastructure (PKI), clients must have an efficient and secure way to determine whether a certificate was revoked (by an entity considered as legitimate to do so), while preserving user privacy. A few certification…

Cryptography and Security · Computer Science 2016-06-02 Pawel Szalachowski , Laurent Chuat , Adrian Perrig

Although TLS is used on a daily basis by many critical applications, the public-key infrastructure that it relies on still lacks an adequate revocation mechanism. An ideal revocation mechanism should be inexpensive, efficient, secure, and…

Cryptography and Security · Computer Science 2016-08-31 Pawel Szalachowski , Laurent Chuat , Taeho Lee , Adrian Perrig

The successful deployment of safe and trustworthy Connected and Autonomous Vehicles (CAVs) will highly depend on the ability to devise robust and effective security solutions to resist sophisticated cyber attacks and patch up critical…

Cryptography and Security · Computer Science 2017-05-22 Giovanni Rigazzi , Andrea Tassi , Robert J. Piechocki , Theo Tryfonas , Andrew Nix

Browsers can detect malicious websites that are provisioned with forged or fake TLS/SSL certificates. However, they are not so good at detecting malicious websites if they are provisioned with mistakenly issued certificates or certificates…

Cryptography and Security · Computer Science 2017-07-21 Abhishek Singh , Binanda Sengupta , Sushmita Ruj

Electronic documents are signed using private keys and verified using the corresponding digital certificates through the well-known public key infrastructure model. Private keys must be kept in a safe container so they can be reused. This…

Cryptography and Security · Computer Science 2024-08-02 Lucas Mayr , Gustavo Zambonin , Frederico Schardong , Ricardo Custódio

Hsu et al. (2022) proposed a cryptographic scheme within the public key infrastructure to bolster the security of smart grid meters. Their proposal involved developing the Certificate Management over CMS mechanism to establish Simple…

Cryptography and Security · Computer Science 2024-12-03 Hong-Sheng Huang , Zhe-Yi Jiang , Hsuan-Tung Chen , Hung-Min Sun

The efficiency of checking certificate status is one of the key indicators in the public key infrastructure (PKI). This prompted researchers to design the Online Certificate Status Protocol (OCSP) standard, defined in RFC 6960, to guide…

Cryptography and Security · Computer Science 2024-12-03 Hong-Sheng Huang , Cheng-Che Chuang , Jhih-Zen Shih , Hsuan-Tung Chen , Hung-Min Sun

Flawed TLS certificates are not uncommon on the Internet. While they signal a potential issue, in most cases they have benign causes (e.g., misconfiguration or even deliberate deployment). This adds fuzziness to the decision on whether to…

Cryptography and Security · Computer Science 2022-07-26 Martin Ukrop , Lydia Kraus , Vashek Matyas

This report surveys different PKI technologies such as PKIX and SPKI and the issues of PKI that affect scalability. Much focus is spent on certificate revocation methodologies and status verification systems such as CRLs, Delta-CRLs, CRS,…

Cryptography and Security · Computer Science 2007-05-23 Adam J Slagell , Rafael Bonilla

Public Key Infrastructures (PKIs) with their trusted Certificate Authorities (CAs) provide the trust backbone for the Internet: CAs sign certificates which prove the identity of servers, applications, or users. To be trusted by operating…

Cryptography and Security · Computer Science 2020-09-21 Jens Hiller , Johanna Amann , Oliver Hohlfeld

The level of trust accorded to certification authorities has been decreasing over the last few years as several cases of misbehavior and compromise have been observed. Log-based approaches, such as Certificate Transparency, ensure that…

Cryptography and Security · Computer Science 2016-01-06 Laurent Chuat , Pawel Szalachowski , Adrian Perrig , Ben Laurie , Eran Messeri

In spite of progress in securing Vehicular Communication (VC) systems, there is no consensus on how to distribute Certificate Revocation Lists (CRLs). The main challenges lie exactly in (i) crafting an efficient and timely distribution of…

Cryptography and Security · Computer Science 2018-07-10 Mohammad Khodaei , Panos Papadimitratos

In spite of progress in securing Vehicular Communication (VC) systems, there is no consensus on how to distribute Certificate Revocation Lists (CRLs). The main challenges lie exactly in (i) crafting an efficient and timely distribution of…

Cryptography and Security · Computer Science 2020-04-08 Mohammad Khodaei , Panos Papadimitratos

Systems managing Verifiable Credentials are becoming increasingly popular. Unfortunately, their support for revoking previously issued credentials allows verifiers to effectively monitor the validity of the credentials, which is sensitive…

Cryptography and Security · Computer Science 2025-09-16 Praveensankar Manimaran , Mayank Raikwar , Thiago Garrett , Arlindo F. da Conceição , Leander Jehl , Roman Vitenberg

The GDPR requires websites to facilitate the right to revoke consent from Web users. While numerous studies measured compliance of consent with the various consent requirements, no prior work has studied consent revocation on the Web.…

Cryptography and Security · Computer Science 2025-05-26 Gayatri Priyadarsini Kancherla , Nataliia Bielova , Cristiana Santos , Abhishek Bichhawat

We address the challenging problem of efficient trust establishment in constrained networks, i.e., networks that are composed of a large and dynamic set of (possibly heterogeneous) devices with limited bandwidth, connectivity, storage, and…

Cryptography and Security · Computer Science 2022-05-05 David Koisser , Patrick Jauernig , Gene Tsudik , Ahmad-Reza Sadeghi
‹ Prev 1 2 3 10 Next ›