Efficient fault-tolerant certificate revocation
Proceedings of the 7th ACM conference on Computer and communications security
PERCOM '03 Proceedings of the First IEEE International Conference on Pervasive Computing and Communications
A novel approach to certificate revocation management
Das'01 Proceedings of the fifteenth annual working conference on Database and application security
Tradeoffs in certificate revocation schemes
ACM SIGCOMM Computer Communication Review
Secure Service and Network Framework for Mobile Ethernet
Wireless Personal Communications: An International Journal
Optimized Certificates --- A New Proposal for Efficient Electronic Document Signature Validation
EuroPKI '08 Proceedings of the 5th European PKI workshop on Public Key Infrastructure: Theory and Practice
Empirical Analysis of Certificate Revocation Lists
Proceeedings of the 22nd annual IFIP WG 11.3 working conference on Data and Applications Security
H-OCSP: A protocol to reduce the processing burden in online certificate status validation
Electronic Commerce Research
Certificate revocation release policies
Journal of Computer Security
Proceedings of the 2005 conference on Applied Public Key Infrastructure: 4th International Workshop: IWAP 2005
Evaluation of certificate validation mechanisms
Computer Communications
Reducing the cost of certificate revocation: a case study
EuroPKI'09 Proceedings of the 6th European conference on Public key infrastructures, services and applications
Modeling public key infrastructures in the real world
EuroPKI'05 Proceedings of the Second European conference on Public Key Infrastructure
Augmented certificate revocation lists
ACISP'06 Proceedings of the 11th Australasian conference on Information Security and Privacy
SP 800-32. Introduction to Public Key Technology and the Federal PKI Infrastructure
SP 800-32. Introduction to Public Key Technology and the Federal PKI Infrastructure
On the self-similarity nature of the revocation data
ISC'12 Proceedings of the 15th international conference on Information Security
Digital certificate management: Optimal pricing and CRL releasing strategies
Decision Support Systems
BECSI: Bandwidth efficient certificate status information distribution mechanism for VANETs
Mobile Information Systems
| Hi-index | 0.00 |
This paper presents a model for the distribution of revocation information using certificate revocation lists (CRLs). This model is used to highlight inefficiencies in the ?traditional? method of distributing certificate status information using CRLs. Two alternative CRL-based revocation distribution mechanisms, over-issued CRLs and segmented CRLs, are then presented. The original model is then expanded to encompass each of the alternative mechanisms and these expanded models are used to demonstrate the advantages of the alternative mechanisms to the ?traditional? method. Finally, the paper offers some suggestions for choosing the best CRL-based revocation distribution mechanism for any particular environment.