Non-PKI methods for public key distribution

The X.509 certification authority-based (CA) public key infrastructure (PKI) is a widely accepted PKI standard which defines data formats and procedures related to the distribution of public keys via public key certificates that are digitally signed by CAs. However, X.509 requires a huge and expensi...

Full description

Saved in:
Bibliographic Details
Published inComputers & security Vol. 23; no. 2; pp. 97 - 103
Main Authors Peyravian, Mohammad, Roginsky, Allen, Zunic, Nevenko
Format Journal Article
LanguageEnglish
Published Amsterdam Elsevier Ltd 01.03.2004
Elsevier Sequoia S.A
Subjects
Authentication
Authentication protocols
Cryptography
Cybersecurity
Distribution
Password
Passwords
Public key
Public Key Infrastructure
X.509
X.509
Authentication
Public key
Distribution
Password
Online AccessGet full text

Cover

More Information
Summary:The X.509 certification authority-based (CA) public key infrastructure (PKI) is a widely accepted PKI standard which defines data formats and procedures related to the distribution of public keys via public key certificates that are digitally signed by CAs. However, X.509 requires a huge and expensive infrastructure with complex operations. This overhead may be tolerable in some cases, but it is highly desirable to find other solutions. The objective of this paper is to present alternative simpler solutions to the X.509 PKI to save storage, bandwidth and to reduce the complexity of the operations. We offer three such solutions. They rely on the existence of passwords that are known to both users and service providers.
Bibliography:ObjectType-Article-2
SourceType-Scholarly Journals-1
ObjectType-Feature-1
content type line 23
ISSN:0167-4048
1872-6208
DOI:10.1016/j.cose.2004.01.011