KeyChains: A Decentralized Public-Key Infrastructure

dc.contributor.authorMorselli, Ruggero
dc.contributor.authorBhattacharjee, Bobby
dc.contributor.authorKatz, Jonathan
dc.contributor.authorMarsh, Michael A.
dc.date.accessioned2006-03-02T18:59:57Z
dc.date.available2006-03-02T18:59:57Z
dc.date.issued2006-03-02T18:59:57Z
dc.description.abstractA Certification Authority (CA) can be used to certify keys and build a public-key infrastructure (PKI) when all users trust the same CA. A decentralized PKI trades off absolute assurance on keys for independence from central control and improved scalability and robustness. The PGP ``web of trust'' model has been suggested as a decentralized certification system, and has been used with great success for secure email. Although the PGP web of trust model allows anyone to issue certificates which can be used to form certificate chains, the discovery and construction of certificate chains relies on centralized keyservers to store certificates and respond to queries. In this paper, we design and implement KeyChains, a peer-to-peer system which incorporates a novel lookup mechanism specifically tailored to the task of generating and retrieving certificate chains in completely unstructured networks. By layering our system on top of the web of trust model, we thus obtain the first PKI which is truly decentralized in all respects. Our analysis and simulations show that the resulting system is both efficient and secure.en
dc.format.extent266219 bytes
dc.format.mimetypeapplication/pdf
dc.identifier.urihttp://hdl.handle.net/1903/3332
dc.language.isoen_USen
dc.relation.ispartofseriesUM Computer Science Departmenten
dc.relation.ispartofseriesCS-TR-4788en
dc.relation.ispartofseriesUMIACSen
dc.relation.ispartofseriesUMIACS-TR-2006-12en
dc.titleKeyChains: A Decentralized Public-Key Infrastructureen
dc.typeTechnical Reporten

Files

Original bundle

Now showing 1 - 1 of 1
Loading...
Thumbnail Image
Name:
0.pdf
Size:
259.98 KB
Format:
Adobe Portable Document Format