|
DRUM >
College of Computer, Mathematical & Physical Sciences >
Computer Science >
Technical Reports from UMIACS >
Please use this identifier to cite or link to this item:
http://hdl.handle.net/1903/3332
|
| Title: | KeyChains: A Decentralized Public-Key Infrastructure |
| Authors: | Morselli, Ruggero
Bhattacharjee, Bobby
Katz, Jonathan
Marsh, Michael A. |
| Type: | Technical Report |
| Issue Date: | 2-Mar-2006 |
| Series/Report no.: | UM Computer Science Department
CS-TR-4788
UMIACS
UMIACS-TR-2006-12 |
| Abstract: | A Certification Authority (CA) can be used to certify keys and build a
public-key infrastructure (PKI) when all users trust the same CA. A
decentralized PKI trades off absolute assurance on keys for
independence from central control and improved scalability and
robustness. The PGP ``web of trust'' model has been suggested as a
decentralized certification system, and has been used with great
success for secure email. Although the PGP web of trust model allows
anyone to issue certificates which can be used to form certificate
chains, the discovery and construction of certificate chains relies on
centralized keyservers to store certificates and respond to queries.
In this paper, we design and implement KeyChains, a peer-to-peer
system which incorporates a novel lookup mechanism specifically
tailored to the task of generating and retrieving certificate chains
in completely unstructured networks. By layering our system on top of
the web of trust model, we thus obtain the first PKI which is truly
decentralized in all respects. Our analysis and simulations show that
the resulting system is both efficient and secure. |
| URI: | http://hdl.handle.net/1903/3332 |
| Appears in Collections: | Technical Reports from UMIACS
Technical Reports of the Computer Science Department
|
Files in This Item:
| File |
Description |
Size | Format | No. of Downloads |
|---|
| 0.pdf | | 259.98 kB | Adobe PDF | 561 | View/Open |
|
All items in DRUM are protected by copyright, with all rights reserved.
|
