A formalisation and evaluation of certificate policies

Authors:
T KlobučAr;B Jerman-Blaič
Affiliations:
Laboratory for Open Systems and Networks, Joef Stefan Institute, Jamova 39, 1000 Ljubljana, Slovenia;Laboratory for Open Systems and Networks, Joef Stefan Institute, Jamova 39, 1000 Ljubljana, Slovenia
Venue:
Computer Communications
Year:
1999

Citing 4
Cited 3

Security policy space definition and structuring

Computer Standards & Interfaces
The Global Internet Trust Register

The Global Internet Trust Register
A new approach to the X.509 framework: allowing a global authentication infrastructure without a global trust model

SNDSS '95 Proceedings of the 1995 Symposium on Network and Distributed System Security (SNDSS'95)
Decentralized trust management

SP'96 Proceedings of the 1996 IEEE conference on Security and privacy

A policy-based methodology for security evaluation: A Security Metric for Public Key Infrastructures

Journal of Computer Security
A computational framework for certificate policy operations

EuroPKI'09 Proceedings of the 6th European conference on Public key infrastructures, services and applications
An innovative policy-based cross certification methodology for public key infrastructures

EuroPKI'05 Proceedings of the Second European conference on Public Key Infrastructure

Quantified Score

Hi-index	0.24

Visualization

Abstract

Certificate policies play a central role in public key infrastructures, since they are the basis for the evaluation of trust in binding between a key and a subject in a public key certificate. The absence of common ways of formally specifying details of policies is a source of difficulty in the operation of global public key infrastructures. In this paper, the problem of the formalisation of certificate policies is discussed and a format for their formal presentation is proposed. Results from the formatting and comparison of existing certificate policies from several well-known certification authorities are also presented.