Deficiencies in LDAP when used to support PKI
Communications of the ACM
On Certificate Revocation and Validation
FC '98 Proceedings of the Second International Conference on Financial Cryptography
Role-Based Access Control With X.509 Attribute Certificates
IEEE Internet Computing
Efficient Certificate Revocation
Efficient Certificate Revocation
Deploying and Using Public Key Technology: Lessons Learned in Real Life
IEEE Security and Privacy
PERMIS: a modular authorization infrastructure
Concurrency and Computation: Practice & Experience - UK e-Science All Hands Meeting 2006
From gridmap-file to VOMS: managing authorization in a Grid environment
Future Generation Computer Systems - Special issue: High-speed networks and services for data-intensive grids: The DataTAG project
Hi-index | 0.00 |
There are several problems associated with the current ways that certificates are published and revoked. This paper discusses these problems, and then proposes a solution based on the use of WebDAV, an enhancement to the HTTP protocol. The proposed solution provides instant certificate revocation, minimizes the processing costs of the certificate issuer and relying party, and eases the administrative burden of publishing certificates and certificate revocation lists (CRLs). We describe how WebDAV can be used for X.509 certificate revocation, and describe how we have implemented it in the PERMIS authorization infrastructure.