...
  • 主题
高级搜索  >
历史搜索 清空历史
首页> 外文期刊>Information Security Technical Report >Delegated Certificate Validation: A new approach to simplifying PKI and achieving trust interoperability
【24h】

Delegated Certificate Validation: A new approach to simplifying PKI and achieving trust interoperability

机译:委托证书验证:一种简化PKI并实现信任互操作性的新方法

获取原文
获取原文并翻译 | 示例
           
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

The trust provided by a PKI system rests on the fact that the digital certificates being used within the infrastructure are authentic and can be relied upon. As such, the process of validating certificates is central to the management of risks within a PKI and for resolving any disputes which may arise later. A major problem is that certificate validation is such a complex process, involving numerous convoluted steps, that implementing it properly has been difficult for application providers. This has hampered support for PKI within end-user application so much so that the full potential of PKI technology is not being realised. This paper shows that by transferring the task of certificate validation from end-user applications to dedicated trust servers, we can simplify the implementation and management of a PKI system. Moreover by adopting a delegate certificate validation approach, the ultimate vision of interoperability between disparate PKI "islands" can also be achieved easily. This has the potential of finally shifting PKI technology beyond closed user-groups to an open, inter-PKI communication environment.
机译:PKI系统提供的信任取决于以下事实:在基础架构中使用的数字证书是真实的,并且可以被依赖。因此,验证证书的过程对于PKI内部风险的管理以及解决以后可能出现的任何争执都是至关重要的。一个主要问题是证书验证是一个非常复杂的过程,涉及许多复杂的步骤,因此对于应用程序提供商来说,正确实施它是很困难的。这极大地阻碍了最终用户应用程序中对PKI的支持,以致无法充分发挥PKI技术的潜力。本文表明,通过将证书验证任务从最终用户应用程序转移到专用的信任服务器,我们可以简化PKI系统的实现和管理。此外,通过采用委托证书验证方法,也可以轻松实现不同PKI“岛屿”之间互操作性的最终愿景。这有可能最终将PKI技术从封闭的用户组转移到开放的PKI间通信环境。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号