PKI Trust Models-Reference-Cited by-同舟云学术

PKI Trust Models

Published:2013 Issue: Volume: Page:279-301
ISSN:1948-9730
Container-title:Theory and Practice of Cryptography Solutions for Secure Information Systems
language:
Short-container-title:

Author:

Jøsang Audun¹

Affiliation:

1. University of Oslo, Norway

Abstract

A PKI can be described as a set of technologies, procedures, and policies for propagating trust from where it initially exists to where it is needed for authentication in online environments. How the trust propagation takes place under a specific PKI depends on the PKI’s syntactic trust structure, which is commonly known as a trust model. However, trust is primarily a semantic concept that cannot be expressed in syntactic terms alone. In order to define meaningful trust models for PKIs it is also necessary to consider the semantic assumptions and human cognition of trust relationships, as explicitly or implicitly expressed by certification policies, legal contractual agreements between participants in a PKI, and by how identity information is displayed and represented. Of the many different PKI trust models proposed in the literature, some have been implemented and are currently used in practical settings, from small personal networks to large-scale private and public networks such as the Internet. This chapter takes a closer look at the most prominent and widely used PKI trust models, and discusses related semantic issues.

Publisher

IGI Global

Reference32 articles.

1. Arends, R., Austein, R., Larson, M., Massey, D., & Rose, S. (2005). RFC 4033 - DNS security introduction and requirements. Retrieved from http://www.rfc-editor.org/

2. Bellovin, S. M. (1995). Using the domain name system for system break-ins. In Proceedings of the Fifth Usenix Unix Security Symposium. IEEE.

3. Blaze, M., Feigenbaum, J., Ioannidis, J., & Keromytis, A. D. (1999). RFC 2704 – The keynote trust management system version 2. Retrieved from http://www.ietf.org/rfc/rfc2704.txt

4. Callas, J., Donnerhacke, L., Finney, H., Shaw, D., & Thayer, R. (2007). RFC 4880 - OpenPGP message format. Retrieved from http://www.rfc-editor.org/

5. Certificate chain discovery in SPKI/SDSI.;D.Clarke;Journal of Computer Security,2001

Cited by 3 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. A Blockchain-based Access Control Scheme for Zero Trust Cross-organizational Data Sharing;ACM Transactions on Internet Technology;2022-07-18

2. A Taxonomy of Trust Models for Attribute Assurance in Identity Management;Advances in Intelligent Systems and Computing;2020

3. A Proposed Scheme for Remedy of Man-In-The-Middle Attack on Certificate Authority;International Journal of Information Security and Privacy;2017-07