A Semidecentralized PKI System Based on Public Blockchains with Automatic Indemnification Mechanism

A Semidecentralized PKI System Based on Public Blockchains with Automatic Indemnification Mechanism

The PKI framework is a widely used network identity verification framework. Users will register their identity information with a certification authority to obtain a digital certificate and then show the digital certificate to others as an identity certificate. After others receive the certificate,...

Descripción completa

Guardado en:
Detalles Bibliográficos
Autores principales: Gwan-Hwan Hwang, Tao-Ku Chang, Hung-Wen Chiang
Formato: article
Lenguaje:EN
Publicado: Hindawi-Wiley 2021
Materias:
Technology (General)
T1-995
Science (General)
Q1-390
Acceso en línea:https://doaj.org/article/54e46be6939f4aba8ca4eed329a0abfb
Etiquetas: Agregar Etiqueta
Sin Etiquetas, Sea el primero en etiquetar este registro!
id oai:doaj.org-article:54e46be6939f4aba8ca4eed329a0abfb
record_format dspace
spelling oai:doaj.org-article:54e46be6939f4aba8ca4eed329a0abfb2021-11-08T02:35:39ZA Semidecentralized PKI System Based on Public Blockchains with Automatic Indemnification Mechanism1939-012210.1155/2021/7400466https://doaj.org/article/54e46be6939f4aba8ca4eed329a0abfb2021-01-01T00:00:00Zhttp://dx.doi.org/10.1155/2021/7400466https://doaj.org/toc/1939-0122The PKI framework is a widely used network identity verification framework. Users will register their identity information with a certification authority to obtain a digital certificate and then show the digital certificate to others as an identity certificate. After others receive the certificate, they must check the revocation list from the CA to confirm whether the certificate is valid. Although this architecture has a long history of use on the Internet, significant doubt surrounds its security. Because the CA may be attacked by DDoS, the verifier may not obtain the revocation list to complete the verification process. At present, there are many new PKI architectures that can improve on the CA’s single point of failure, but since they still have some shortcomings, the original architecture is still used. In this paper, we proposed a semidecentralized PKI architecture that can easily prevent a single point of failure. Users can obtain cryptographic evidence through specific protocols to clarify the responsibility for the incorrect certificate and then submit the cryptographic evidence to the smart contract for automatic judgment and indemnification.Gwan-Hwan HwangTao-Ku ChangHung-Wen ChiangHindawi-WileyarticleTechnology (General)T1-995Science (General)Q1-390ENSecurity and Communication Networks, Vol 2021 (2021)
institution DOAJ
collection DOAJ
language EN
topic Technology (General)
T1-995
Science (General)
Q1-390
spellingShingle Technology (General)
T1-995
Science (General)
Q1-390
Gwan-Hwan Hwang
Tao-Ku Chang
Hung-Wen Chiang
A Semidecentralized PKI System Based on Public Blockchains with Automatic Indemnification Mechanism
description The PKI framework is a widely used network identity verification framework. Users will register their identity information with a certification authority to obtain a digital certificate and then show the digital certificate to others as an identity certificate. After others receive the certificate, they must check the revocation list from the CA to confirm whether the certificate is valid. Although this architecture has a long history of use on the Internet, significant doubt surrounds its security. Because the CA may be attacked by DDoS, the verifier may not obtain the revocation list to complete the verification process. At present, there are many new PKI architectures that can improve on the CA’s single point of failure, but since they still have some shortcomings, the original architecture is still used. In this paper, we proposed a semidecentralized PKI architecture that can easily prevent a single point of failure. Users can obtain cryptographic evidence through specific protocols to clarify the responsibility for the incorrect certificate and then submit the cryptographic evidence to the smart contract for automatic judgment and indemnification.
format article
author Gwan-Hwan Hwang
Tao-Ku Chang
Hung-Wen Chiang
author_facet Gwan-Hwan Hwang
Tao-Ku Chang
Hung-Wen Chiang
author_sort Gwan-Hwan Hwang
title A Semidecentralized PKI System Based on Public Blockchains with Automatic Indemnification Mechanism
title_short A Semidecentralized PKI System Based on Public Blockchains with Automatic Indemnification Mechanism
title_full A Semidecentralized PKI System Based on Public Blockchains with Automatic Indemnification Mechanism
title_fullStr A Semidecentralized PKI System Based on Public Blockchains with Automatic Indemnification Mechanism
title_full_unstemmed A Semidecentralized PKI System Based on Public Blockchains with Automatic Indemnification Mechanism
title_sort semidecentralized pki system based on public blockchains with automatic indemnification mechanism
publisher Hindawi-Wiley
publishDate 2021
url https://doaj.org/article/54e46be6939f4aba8ca4eed329a0abfb
work_keys_str_mv AT gwanhwanhwang asemidecentralizedpkisystembasedonpublicblockchainswithautomaticindemnificationmechanism
AT taokuchang asemidecentralizedpkisystembasedonpublicblockchainswithautomaticindemnificationmechanism
AT hungwenchiang asemidecentralizedpkisystembasedonpublicblockchainswithautomaticindemnificationmechanism
AT gwanhwanhwang semidecentralizedpkisystembasedonpublicblockchainswithautomaticindemnificationmechanism
AT taokuchang semidecentralizedpkisystembasedonpublicblockchainswithautomaticindemnificationmechanism
AT hungwenchiang semidecentralizedpkisystembasedonpublicblockchainswithautomaticindemnificationmechanism
_version_ 1718443185039998976

Ejemplares similares