Security policy space definition and structuring
Computer Standards & Interfaces
The Global Internet Trust Register
The Global Internet Trust Register
SNDSS '95 Proceedings of the 1995 Symposium on Network and Distributed System Security (SNDSS'95)
Decentralized trust management
SP'96 Proceedings of the 1996 IEEE conference on Security and privacy
A policy-based methodology for security evaluation: A Security Metric for Public Key Infrastructures
Journal of Computer Security
A computational framework for certificate policy operations
EuroPKI'09 Proceedings of the 6th European conference on Public key infrastructures, services and applications
An innovative policy-based cross certification methodology for public key infrastructures
EuroPKI'05 Proceedings of the Second European conference on Public Key Infrastructure
Hi-index | 0.24 |
Certificate policies play a central role in public key infrastructures, since they are the basis for the evaluation of trust in binding between a key and a subject in a public key certificate. The absence of common ways of formally specifying details of policies is a source of difficulty in the operation of global public key infrastructures. In this paper, the problem of the formalisation of certificate policies is discussed and a format for their formal presentation is proposed. Results from the formatting and comparison of existing certificate policies from several well-known certification authorities are also presented.