论文信息 - Keyless Signatures' Infrastructure: How to Build Global Distributed Hash-Trees

Keyless Signatures' Infrastructure: How to Build Global Distributed Hash-Trees

Keyless Signatures Infrastructure KSI is a globally distributed system for providing time-stamping and server-supported digital signature services. Global per-second hash trees are created and their root hash values published. We discuss some service quality issues that arise in practical implementation of the service and present solutions for avoiding single points of failure and guaranteeing a service with reasonable and stable delay. Guardtime AS has been operating a KSI Infrastructure for 5 years. We summarize how the KSI Infrastructure is built, and the lessons learned during the operational period of the service.

[1] Stuart Haber,et al. How to time-stamp a digital document , 1990, Journal of Cryptology.

[2] Stuart Haber,et al. Improving the Efficiency and Reliability of Digital Time-Stamping , 1993 .

[3] Ahto Buldas,et al. Security Proofs for Hash Tree Time-Stamping Using Hash Functions with Small Output Size , 2013, ACISP.

[4] Ralph C. Merkle,et al. Protocols for Public Key Cryptosystems , 1980, 1980 IEEE Symposium on Security and Privacy.

[5] Ahto Buldas,et al. On Provably Secure Time-Stamping Schemes , 2004, ASIACRYPT.

[6] Ahto Buldas,et al. Optimally Tight Security Proofs for Hash-Then-Publish Time-Stamping , 2010, ACISP.