Skip to main content
SpringerLink
Log in
Book cover

International Conference on Grid and Cooperative Computing

GCC 2005: Grid and Cooperative Computing - GCC 2005 pp 123–128Cite as

A New United Certificate Revocation Scheme in Grid Environments

  • Conference paper

  • 435 Accesses

Part of the book series: Lecture Notes in Computer Science ((LNPSE,volume 3795))

Abstract

This paper analyses security drawbacks of traditional certificates revocation in GSI. And we bring forward a new united certificate revocation scheme. In our scheme, one-way hash chains, novel multiple certificates and CRLs shared mode are proposed to improve the revocation mechanism. So partial functions of CA are distributed to other Grid nodes, congestion and single-point failure is avoided in Grid environments. The certificates issued by different CAs could carry out mutual authentication, and users can verify the validity of certificates without retrieving the revocation information from the CA which issues the certificates. To study the performance, three classical revocation schemes are used to compare with our united revocation scheme in the experiments. Simulation results and analysis show that the peak request value of united revocation is lower than other three schemes and the peak bandwidth value is narrower and the risk is reduced.

This research is supported by Shaanxi Provincial Natural Science Foundation of China under Grant No. 2004F14.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   129.00
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   169.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Welch, V.: Security for Grid Services. In: Twelfth International Symposium on High Performance Distributed Computing (HPDC 12). IEEE Press, Los Alamitos (2003)

    Google Scholar 

  2. Kocher, P.: On Certificate Revocation and Validation. In: Hirschfeld, R. (ed.) FC 1998. LNCS, vol. 1465, pp. 172–177. Springer, Heidelberg (1998)

    Chapter  Google Scholar 

  3. Gassko, I., Gemmell, P.S., MacKenzie, P.: Efficient and Fresh Certification. In: Imai, H., Zheng, Y. (eds.) PKC 2000. LNCS, vol. 1751, pp. 342–353. Springer, Heidelberg (2000)

    Chapter  Google Scholar 

  4. Rivest, R.: Can We Eliminate Certificate Revocation Lists. In: Hirschfeld, R. (ed.) FC 1998. LNCS, vol. 1465, pp. 178–183. Springer, Heidelberg (1998)

    Chapter  Google Scholar 

  5. Berson, T.A., Gong, L., Lomas, T.M.A.: Secure, Keyed, and Collisionful Hash Functions. Technical Report. SRI-CSL-94-08. SRI International (1994)

    Google Scholar 

  6. Cooper, D.: A More Efficient Use of Delta-CRLs. Security and Privacy, 190–202 (2000)

    Google Scholar 

  7. Andre, A., Mike, J., Steve, L.: Selecting revocation solutions for PKI. In: Proceedings of The Fifth Nordic Workshop on Secure IT Systems (NORDSEC 2000), Reykjavik Iceland, pp. 360–376 (2000)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Telecommunication Engineering Institute, Air Force Engineering University, Xi’an, shaanxi, 710077, P.R. China

    Ying Liu, Sheng-rong Wang, Jing-bo Xia & Jun Wei

Authors
  1. Ying Liu
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Sheng-rong Wang
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Jing-bo Xia
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Jun Wei
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. China Knowledge Grid Research Group, Key Lab of Intelligent Information Processing, Institute of Computing Technology, Chinese Academy of Sciences, 100080, Beijing, China

    Hai Zhuge

  2. Community Grids Lab, Indiana University Bloomington,  

    Geoffrey C. Fox

Rights and permissions

Reprints and permissions

Copyright information

© 2005 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Liu, Y., Wang, Sr., Xia, Jb., Wei, J. (2005). A New United Certificate Revocation Scheme in Grid Environments. In: Zhuge, H., Fox, G.C. (eds) Grid and Cooperative Computing - GCC 2005. GCC 2005. Lecture Notes in Computer Science, vol 3795. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11590354_16

Download citation

  • DOI: https://doi.org/10.1007/11590354_16

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-30510-1

  • Online ISBN: 978-3-540-32277-1

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation