Accountable Key Infrastructure (AKI): A Proposal for a Public-Key Validation Infrastructure

Thumbnail

Event details

Date 11.06.2013
Hour 15:1516:15
Speaker Prof. Adrian Perrig, ETH Zürich
Location
Category Conferences - Seminars
Recent trends in public-key infrastructure research explore the tradeoff between decreased trust in Certificate Authorities (CAs), resilience against attacks, ommunication overhead (bandwidth and latency) for setting up an SSL/TLS connection, and availability with respect to verifiability of public key information. In this paper, we propose AKI as a new public-key validation infrastructure, to reduce the level of trust in CAs.  AKI integrates an architecture for key revocation of all entities (e.g., CAs, domains) with an architecture for accountability of all infrastructure parties through checks-and-balances. AKI efficiently handles common certification operations, and gracefully handles catastrophic events such as domain key loss or compromise. We propose AKI to make progress towards a public-key validation infrastructure with key revocation that reduces trust in any single entity.

Links

Practical information

  • General public
  • Free

Organizer

  • SuRI 2013

Contact

  • Simone Muller

Tags

suri2013

Event broadcasted in

Share