Cleaning up the PKI for Long-Term Signatures
نویسندگان
چکیده
In this paper we present a new approach for the conventional X.509 Public Key Infrastructures (PKI). Our goal is to reduce the effort to handle signatures in the long term. The novelty is that a Root CA reissues subordinate certificates of final users, but adjusting validity periods to exclude the periods after a revocation. The Root CA also authenticates timestamps. The result is the cleaned PKI, which is simpler than the conventional PKI because: a) there is no revocation; b) there is no intermediary Certification Authority; c) signatures are trustworthy as long as the used cryptographic algorithms remain secure. As benefits, we reduce the need of timestamps and consequently the demand for storage space and processing time to use signed documents.
منابع مشابه
The Notary Based PKI - A Lightweight PKI for Long-Term Signatures on Documents
We propose a new Public Key Infrastructure model for longterm signatures. It is based on X.509 and the real world of handwritten signatures. In the model, notaries certify that a signer’s certificate is trustworthy to verify a particular signature at a specific time. An end user issues his own X.509 certificate, whose validity period is meaningless and whose trustworthiness is accepted only if ...
متن کاملAn advanced certificate validation service and architecture based on XKMS
The apparition of some laws that make the electronic signature (e-signature) legally equivalent to handwritten signature (under some circumstances) has favoured its use in different fields such as e-commerce, e-government, etc. In these fields, some signed documents have to be stored and remain valid over long periods of time. For this kind of e-signatures some formats such as CAdES and XAdES h...
متن کاملOptimized Public Key Infrastructure - A PKI to Support Efficient Document's Signatures
Optimized Public Key Infrastructures are traditional PKI in which end users may optimize the signatures of their documents, replacing the signer’s validation data with Optimized Certificates (OC). OCs carry the signer’s identification and public key, but are issued for a specific time, i.e., fields notBefore and notAfter have the same value, thus there are no reasons to revoke them. The OC’s ce...
متن کاملLong term follow up of recurrent uterine cervical cancer: A Case Report
Background and Aim: Carcinoma of the uterine cervix is a significant cause of mortality because of malignancy in women. Radiotherapy is a major treatment modality for invasive cervical cancer with good treatment outcome in early-stage patients. However, substantial treatment failures still occur in the advanced-stage patients. In this case report a long term follow up of a 58 years old woman wi...
متن کاملLong Term Follow up and Patient Satisfaction after Reduction Mammoplasty: Superomedial versus Inferior Pedicle
BACKGROUND Surgery for hypertrophied breast represents a challenge for plastic surgeons. The search for a good cosmetic breast has led to the development of many techniques. Objectives for reduction mammoplasty are to achieve elevated, symmetrical breasts, with round shape, good projection, small cicatrices that are not very perceptible, and a lasting result. METHODS This study was car...
متن کامل