Veritaa: A distributed public key infrastructure with signature store

The conventional public key infrastructure (PKI) model, which powers most of the Internet, suffers from an excess of trust into certificate authorities (CAs), compounded by a lack of transparency which makes it vulnerable to hard-to-detect targeted stealth impersonation attacks. Existing approaches to make certificate issuance more transparent, including ones based on blockchains, are still somewhat centralized. We present decentralized PKI transparency (DPKIT): a decentralized client-based approach to enforcing transparency in certificate issuance and revocation while eliminating single points of failure. DPKIT efficiently leverages an existing blockchain to realize an append-only, distributed associative array, which allows anyone (or their browser) to audit and update the history of all publicly issued certificates and revocations for any domain. Our technical contributions include definitions for append-only associative ledgers, a security model for certificate transparency, and a formal analysis of our DPKIT construction with respect to the same. Intended as a client-side browser extension, DPKIT will be effective at fraud detection and prosecution, even under fledgling user adoption, and with better coverage and privacy than federated observatories, such as Google’s or the Electronic Frontier Foundation’s.

Public key infrastructure - enabled services

Proceedings. The 9th Russian-Korean International Symposium on Science and Technology, 2005. KORUS 2005. ◽

10.1109/korus.2005.1507952 ◽

2006 ◽

Author(s):

A.M. Karagodin

Keyword(s):

Public Key Infrastructure ◽

Public Key

Developing a Public Key Infrastructure for a Secure Regional e-Health Environment

Methods of Information in Medicine ◽

10.1055/s-0038-1634371 ◽

2002 ◽

Vol 41 (05) ◽

pp. 414-418 ◽

Cited By ~ 6

Author(s):

I. Mavridis ◽

C. Ilioudis ◽

C. Georgiadis ◽

G. Pangalos

Keyword(s):

Health Information ◽

Low Cost ◽

Public Key Cryptography ◽

Public Key Infrastructure ◽

University Hospital ◽

Public Key ◽

The Internet ◽

Regional Health ◽

Internet Applications ◽

Regional Health Care

Summary Objectives: Internet technologies provide an attractive infrastructure for efficient and low cost communications in regional health information networks. The advantages provided by the Internet come however with a significantly greater element of risk to the confidentiality and integrity of information. This is because the Internet has been designed primarily to optimize information sharing and interoperability, not security. The main objective of this paper is to propose the exploitation of public-key cryptography techniques to provide adequate security to enable secure healthcare Internet applications. Methods: Public-key cryptography techniques can provide the needed security infrastructure in regional health networks. In the regional health-care security framework presented in this paper, we propose the use of state-of-art Public Key Infrastructure (PKI) technology. Such an e-Health PKI consists of regional certification authorities that are implemented within the central hospitals of each region and provide their services to the rest of the healthcare establishments of the same region. Results: Significant experience in this area has been gained from the implementation of the PKI@AUTH project. Conclusions: The developed PKI infrastructure already successfully provides its security services to the AHEPA university hospital. The same infrastructure is designed to easily support a number of hospitals participating in a regional health information network.

Developing a public key infrastructure for use in a teaching laboratory

Proceeding of the 4th conference on Information technology education - CITC '03 ◽

10.1145/947121.947181 ◽

2003 ◽

Cited By ~ 1

Author(s):

Phillip T. Rawles ◽

Kristoffer A. Baker

Keyword(s):

Public Key Infrastructure ◽

Public Key ◽

Teaching Laboratory