TY - GEN
T1 - A Privacy-Aware PKI System Based on Permissioned Blockchains
AU - Wang, Rong
AU - He, Juan
AU - Liu, Can
AU - Li, Qi
AU - Tsai, Wei Tek
AU - Deng, Enyan
N1 - Publisher Copyright:
© 2018 IEEE.
PY - 2018/7/2
Y1 - 2018/7/2
N2 - Public key infrastructure (PKI) is the foundation and core of network security construction. Blockchain (BC) has many technical characteristics, such as decentralization, impossibility of being tampered with and forged, which makes it have incomparable advantages in ensuring information credibility, security, traceability and other aspects of traditional technology. In this paper, a method of constructing PKI certificate system based on permissioned BC is proposed. The problems of multi-CA mutual trust, poor certificate configuration efficiency and single point failure in digital certificate system are solved by using the characteristics of BC distribution and non-tampering. At the same time, in order to solve the problem of identity privacy on BC, this paper proposes a privacy-aware PKI system based on permissioned BCs. This system is an anonymous digital certificate publishing scheme., which achieves the separation of user registration and authorization, and has the characteristics of anonymity and conditional traceability, so as to realize to protect user's identity privacy. The system meets the requirements of certificate security and anonymity, reduces the cost of CA construction, operation and maintenance in traditional PKI technology, and improves the efficiency of certificate application and configuration.
AB - Public key infrastructure (PKI) is the foundation and core of network security construction. Blockchain (BC) has many technical characteristics, such as decentralization, impossibility of being tampered with and forged, which makes it have incomparable advantages in ensuring information credibility, security, traceability and other aspects of traditional technology. In this paper, a method of constructing PKI certificate system based on permissioned BC is proposed. The problems of multi-CA mutual trust, poor certificate configuration efficiency and single point failure in digital certificate system are solved by using the characteristics of BC distribution and non-tampering. At the same time, in order to solve the problem of identity privacy on BC, this paper proposes a privacy-aware PKI system based on permissioned BCs. This system is an anonymous digital certificate publishing scheme., which achieves the separation of user registration and authorization, and has the characteristics of anonymity and conditional traceability, so as to realize to protect user's identity privacy. The system meets the requirements of certificate security and anonymity, reduces the cost of CA construction, operation and maintenance in traditional PKI technology, and improves the efficiency of certificate application and configuration.
KW - component
KW - digital certificate
KW - permissioned blockchains
KW - privacy-awareness
KW - public-key infrastructure
KW - security
UR - https://www.scopus.com/pages/publications/85063613387
U2 - 10.1109/ICSESS.2018.8663738
DO - 10.1109/ICSESS.2018.8663738
M3 - 会议稿件
AN - SCOPUS:85063613387
T3 - Proceedings of the IEEE International Conference on Software Engineering and Service Sciences, ICSESS
SP - 928
EP - 931
BT - ICSESS 2018 - Proceedings of 2018 IEEE 9th International Conference on Software Engineering and Service Science
A2 - Wenzheng, Li
A2 - Babu, M. Surendra Prasad
PB - IEEE Computer Society
T2 - 9th IEEE International Conference on Software Engineering and Service Science, ICSESS 2018
Y2 - 23 November 2018 through 25 November 2018
ER -