LOCALPKI: A User-Centric Formally Proven Alternative to PKIX

Jean-Guillaume Dumas, Pascal Lafourcade, Francis Melemedjian, Jean-Baptiste Orfila, Pascal Thoniel

2017

Abstract

Abstract. A public-key infrastructure (PKI) binds public keys to identities of entities. Usually, this binding is established through a process of registration and issuance of certificates by a certificate authority (CA) where the validation of the registration is performed by a local registration authority. In this paper, we pro- pose an alternative scheme, called L OCALPKI, where the binding is performed by the local authority and the issuance is left to the end user or to the local au- thority. The role of our third entity is then to register this binding and to provide up-to-date status information on this registration. The idea is that many more lo- cal actors could then take the role of a local authority, thus allowing for an easier spread of public-key certificates in the population. We formally prove the security of this new scheme and show how to deploy it using existing tools and protocols.

Download


Paper Citation


in Harvard Style

Dumas J., Lafourcade P., Melemedjian F., Orfila J. and Thoniel P. (2017). LOCALPKI: A User-Centric Formally Proven Alternative to PKIX . In Proceedings of the 14th International Joint Conference on e-Business and Telecommunications - Volume 6: SECRYPT, (ICETE 2017) ISBN 978-989-758-259-2, pages 187-199. DOI: 10.5220/0006461101870199


in Bibtex Style

@conference{secrypt17,
author={Jean-Guillaume Dumas and Pascal Lafourcade and Francis Melemedjian and Jean-Baptiste Orfila and Pascal Thoniel},
title={LOCALPKI: A User-Centric Formally Proven Alternative to PKIX},
booktitle={Proceedings of the 14th International Joint Conference on e-Business and Telecommunications - Volume 6: SECRYPT, (ICETE 2017)},
year={2017},
pages={187-199},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006461101870199},
isbn={978-989-758-259-2},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 14th International Joint Conference on e-Business and Telecommunications - Volume 6: SECRYPT, (ICETE 2017)
TI - LOCALPKI: A User-Centric Formally Proven Alternative to PKIX
SN - 978-989-758-259-2
AU - Dumas J.
AU - Lafourcade P.
AU - Melemedjian F.
AU - Orfila J.
AU - Thoniel P.
PY - 2017
SP - 187
EP - 199
DO - 10.5220/0006461101870199