Abstract
Keys are indispensable in secure communication, and can only be adequately protected by tamper resistant hardware. Conversely, once you have tamper resistant devices available, you may as well try to make the most of them. In this exposition, we present three novel ideas for the combination of PKI and appropriate use of tamper resistant devices for other purposes than traditional key management. The first isElectronic Negotiable Instruments, such as cash, but there are other important examples, such as Bills of Lading and endorsable checks. The challenge is to prevent double spending without the use of a central registry to keep track of ownership. The second is a new light way digital signature scheme which seems to work well with tamper resistant hardware, but not in software, where it can be broken. We briefly discuss how to make use of this in a transparent PKI solution to be employed by vehicles, which appears to be a hot research topic. Finally we introduce the concept of a digital signature server with central storage of user keys and a central signing facility only, which is operated at the full control of the user using a secure channel for proper authentication. The first and last scenarios have both been deployed in live systems and have been patented, in contrast to the light weight digital signature.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Blum, J., Eskandarian, A.: The threat of intelligent collisions. IT Professional 6(1), 24–29 (2004)
Bolero’s Trusted Platform: www.bolero.net/solutions/tradeplatform/titleregistry.html
E-Title, http://www.e-title.net/
Hubaux, J.-P., Capkun, S., Luo, J.: The security and privacy of smart vehicles. IEEE Security and Privacy Magazine 2(3), 49–55 (2004)
Landrock, P.: A New Realisation of Negotiable instruments. In: Cambridge Workshop on Security Protocols, April 1996, The Isaac Newton Institute, Cambridge (1996)
Landrock, P.: A new concept in protocols: verifiable computational delegation. In: Christianson, B., Crispo, B., Harbison, W.S., Roe, M. (eds.) Security Protocols 1998. LNCS, vol. 1550, pp. 137–145. Springer, Heidelberg (1999)
Landrock, P.: Security Protocols – Who Knows What Exactly. In: Herbert, A., Jones, K.S. (eds.) Computer Systems: theory, technology, and applications, Monographs in Computer Science, Springer, Heidelberg (2003)
Landrock, P.: Timely Authentication in Vehicular Communication, presentation at ESCAR, Berlin (2006)
Landrock, P., Pedersen, T.P.: WYSIWYS? What you see is what you sign? Information Security Technical Report, vol. 3(2). Elsevier, Amsterdam (1998)
Patent No. WO9624997, Electronic negotiable Documents, Inventor: Landrock, P., (first filed 1994)
Patent no. EP13645081 B., Data Certification Method and Apparatus. Inventors: Landrock P. and Tuliani, J., (filed 2002)
Raya, M., Papadimitratos, P., Hubaux, J.-P.: Securing Vehicular Communications – Accepted in IEEE Wireless Communications Magazine. [LCA-ARTICLE-2006-015]
Author information
Authors and Affiliations
Editor information
Rights and permissions
Copyright information
© 2008 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Landrock, P. (2008). New PKI Protocols Using Tamper Resistant Hardware. In: Mjølsnes, S.F., Mauw, S., Katsikas, S.K. (eds) Public Key Infrastructure. EuroPKI 2008. Lecture Notes in Computer Science, vol 5057. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-69485-4_1
Download citation
DOI: https://doi.org/10.1007/978-3-540-69485-4_1
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-69484-7
Online ISBN: 978-3-540-69485-4
eBook Packages: Computer ScienceComputer Science (R0)