论文信息 - Research on Model of Trust Degrees for PKI

Research on Model of Trust Degrees for PKI

In order to improve the accuracy of trust evaluation of subscribers (or key holders) from relying parties’ point of view, a new model of trust degrees for PKI is proposed. By analyzing the security risks during the applying and using process of certificates and private keys, we introduce non-trust factor (NTF); then based on NTF, a method for trust degrees of keys is presented. Comparing with the existing work, the model integrates several critical factors which influence trust degrees of keys into one formula, thus improving the accuracy of trust evaluation for PKI and being applicable to a variety of PKI trust models.

[1] Ueli Maurer,et al. Modelling a Public-Key Infrastructure , 1996, ESORICS.

[2] T. Moses,et al. TRUST MANAGEMENT IN THE PUBLIC-KEY INFRASTRUCTURE , 1999 .

[3] Bruce Schneier,et al. Ten Risks of PKI , 2004 .

[4] David W. Chadwick,et al. Evaluating Trust in a Public Key Certification Authority , 2001, Comput. Secur..

[5] Wu Jin-pei. A conditional predicate calculus logic for PKI trust model analysis , 2002 .

[6] Carl M. Ellison. Improvements on Conventional PKI Wisdom , 2002 .

[7] Russ Housley,et al. Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile , 2002, RFC.

[8] Lunwei Wang. Research on Authentication Trustworthiness Theory , 2005 .

[9] Qian Feng. A dynamic evaluating method of confidence within CA in PKI system , 2006 .

[10] Zhang Song. Vulnerability and countermeasure analysis of the public key infrastructure , 2007 .

[11] David Cooper,et al. Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile , 2008, RFC.