Use of a Validation Authority to Provide Risk Management for the PKI Relying Party

Use of a Validation Authority to Provide Risk Management for the PKI Relying Party

Interoperability between PKIs (Public Key Infrastructure) is a major issue in several electronic commerce scenarios. A Relying Party (RP), in particular in an international setting, should not unduly put restrictions on selection of Certificate Authorities (CA) by its counterparts. Rather, the RP sh...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Ølnes, Jon, Buene, Leif
Format: Tagungsbericht
Sprache:eng
Schlagworte:
Applied sciences
Certificate Policy
Computer science
control theory
systems
Computer systems and distributed systems. User interface
Cryptography
Electronic Signature
Exact sciences and technology
Information, signal and communications theory
Policy Mapping
Qualified Certificate
Signal and communications theory
Software
Telecommunications and information theory
Trust Structure
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Interoperability between PKIs (Public Key Infrastructure) is a major issue in several electronic commerce scenarios. A Relying Party (RP), in particular in an international setting, should not unduly put restrictions on selection of Certificate Authorities (CA) by its counterparts. Rather, the RP should be able to accept certificates issued by any relevant CA. Such acceptance implies not only the ability to validate certificates, but also an assessment of the risk related to acceptance of a certificate for the purpose at hand. We analyse common PKI trust models with respect to risk management, and argue that an independent, trusted Validation Authority (VA) may be a better approach for this task. A VA as suggested by this paper will also remove the need for complicated certificate path processing.
ISSN:0302-9743
1611-3349
DOI:10.1007/11774716_1