Author:
Talamo Maurizio,Arcieri Franco,Dimitri Andrea,Schunck Christian H.
Abstract
Public key infrastructures (PKIs) are the cornerstone for the security of the communication layer of online services relying on certificate-based authentication, such as e-commerce, e-government, online banking, cloud services, and many others. A PKI is an infrastructure based on a hierarchical model, but the use of PKIs in non-hierarchical contexts has exposed them to many types of attacks. Here, we discuss weaknesses exploited in past attacks and we propose a solution based on an original consensus algorithm developed for use on blockchain technology. In this implementation we retain the full functionality around X.509 certificates, i.e., for the triad (server name, server address, X.509 server certificate), and demonstrate a mechanism for obtaining fast consensus. The main properties of the solution are that a consensus may be reached even when not all members of the involved PKI participate in a transaction, and that no advanced trust agreement among PKIs is needed. The proposed solution is able to detect PKI attacks and can distinguish errors from attacks, allowing precise management of anomalies.
Subject
Computer Networks and Communications
Reference21 articles.
1. Internet X.509 public key infrastructure certificate and certificate revocation list (crl) profile;Cooper;RFC,2008
2. Proof of Delivery of Digital Assets Using Blockchain and Smart Contracts
3. Performance Analysis of Private Blockchain Platforms in Varying Workloads
4. Bootstrapping the Blockchain with Applications to Consensus and Fast PKI setup;Garay,2018
Cited by
23 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. Public Key Infrastructure Approaches Based on Blockchain;2024 21st International Multi-Conference on Systems, Signals & Devices (SSD);2024-04-22
2. Algorithmic Approaches to Securing Cloud Environments in the Realm of Cybersecurity;2024 10th International Conference on Communication and Signal Processing (ICCSP);2024-04-12
3. Implementing a Novel Blockchain Algorithm for Enhanced Data Integrity in Cloud Systems;2024 International Conference on Trends in Quantum Computing and Emerging Business Technologies;2024-03-22
4. Advanced Machine Learning Techniques for Enhancing Data Security in Cloud Computing Systems;2024 IEEE International Conference on Computing, Power and Communication Technologies (IC2PCT);2024-02-09
5. Exploring the Implications of IoT Integration in Urban Infrastructures for Sustainable Smart Cities;2024 International Conference on Intelligent and Innovative Technologies in Computing, Electrical and Electronics (IITCEE);2024-01-24