Skip to main content

Advertisement

SpringerLink
Log in
Menu
Find a journal Publish with us
Search
Cart
Book cover

International Conference on Information and Communications Security

ICICS 2012: Information and Communications Security pp 22–32Cite as

  1. Home
  2. Information and Communications Security
  3. Conference paper
Impact of the Revocation Service in PKI Prices

Impact of the Revocation Service in PKI Prices

  • Carlos Gañán18,
  • Jose L. Muñoz18,
  • Oscar Esparza18,
  • Jorge Mata-Díaz18 &
  • …
  • Juanjo Alins18 
  • Conference paper
  • 1922 Accesses

  • 1 Citations

Part of the Lecture Notes in Computer Science book series (LNSC,volume 7618)

Abstract

The ability to communicate securely is needed for many network applications. Public key infrastructure (PKI) is the most extended solution to verify and confirm the identity of each party involved in any secure transaction and transfer trust over the network. One of the hardest tasks of a certification infrastructure is to manage revocation. Research on this topic has focused on the trade-offs that different revocation mechanisms offer. However, less effort has been paid to understand the benefits of improving the revocation policies. In this paper, we analyze the behavior of the oligopoly of certificate providers that issue digital certificates to clients facing identical independent risks. We found the prices in the equilibrium, and we proof that certificate providers that offer better revocation information are able to impose higher prices to their certificates without sacrificing market share in favor of the other oligarchs. In addition, we show that our model is able to explain the actual tendency of the SSL market where providers with worst QoS are suffering loses.

Keywords

  • PKI pricing
  • SSL certificates
  • CRLs

Download conference paper PDF

References

  1. Adams, C., Farrell, S.: Internet X.509 Public Key Infrastructure Certificate Management Protocols. RFC 2510, Internet Engineering Task Force (March 1999)

    Google Scholar 

  2. Housley, R., Polk, W., Ford, W., Solo, D.: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile. RFC 3280, Internet Engineering Task Force (April 2002)

    Google Scholar 

  3. Perlines Hormann, T., Wrona, K., Holtmanns, S.: Evaluation of certificate validation mechanisms. Comput. Commun. 29, 291–305 (2006)

    CrossRef  Google Scholar 

  4. Arnes, A.: Public key certificate revocation schemes. Queen’s University. Ontario, Canada. Master Thesis (2000)

    Google Scholar 

  5. Cooper, D.A.: A more efficient use of Delta-CRLs. In: 2000 IEEE Symposium on Security and Privacy. Computer Security Division of NIST, pp. 190–202 (2000)

    Google Scholar 

  6. Ofigsbø, M.H., Mjølsnes, S.F., Heegaard, P., Nilsen, L.: Reducing the Cost of Certificate Revocation: A Case Study. In: Martinelli, F., Preneel, B. (eds.) EuroPKI 2009. LNCS, vol. 6391, pp. 51–66. Springer, Heidelberg (2010)

    CrossRef  Google Scholar 

  7. Ma, C., Hu, N., Li, Y.: On the release of CRLs in public key infrastructure. In: Proceedings of the 15th Conference on USENIX Security Symposium, Berkeley, CA, USA, vol. 15 (2006)

    Google Scholar 

  8. Hu, N., Tayi, G.K., Ma, C., Li, Y.: Certificate revocation release policies. J. Comput. Secur. 17, 127–157 (2009)

    Google Scholar 

  9. WhichSSL. SSL Market Share (2010), http://www.whichssl.com/ssl-market-share.html

Download references

Author information

Authors and Affiliations

  1. Departament Enginyeria Telemàtica, Universitat Politècnica de Catalunya, Spain

    Carlos Gañán, Jose L. Muñoz, Oscar Esparza, Jorge Mata-Díaz & Juanjo Alins

Authors
  1. Carlos Gañán
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Jose L. Muñoz
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Oscar Esparza
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Jorge Mata-Díaz
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Juanjo Alins
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Computer Science, The University of Hong Kong, Room 519, 5/F, Haking Building, Pokfulam Road, 852, Hong Kong, China

    Tat Wing Chim

  2. Department of Computer Science, The University of Hong Kong, Room 519, 5/F, Haking Wong Building, Pokfulam Road, 852, Hong Kong, China

    Tsz Hon Yuen

Rights and permissions

Reprints and Permissions

Copyright information

© 2012 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Gañán, C., Muñoz, J.L., Esparza, O., Mata-Díaz, J., Alins, J. (2012). Impact of the Revocation Service in PKI Prices. In: Chim, T.W., Yuen, T.H. (eds) Information and Communications Security. ICICS 2012. Lecture Notes in Computer Science, vol 7618. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-34129-8_3

Download citation

  • .RIS
  • .ENW
  • .BIB
  • DOI: https://doi.org/10.1007/978-3-642-34129-8_3

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-34128-1

  • Online ISBN: 978-3-642-34129-8

  • eBook Packages: Computer ScienceComputer Science (R0)

Share this paper

Anyone you share the following link with will be able to read this content:

Sorry, a shareable link is not currently available for this article.

Provided by the Springer Nature SharedIt content-sharing initiative

Search

Navigation

  • Find a journal
  • Publish with us

Discover content

  • Journals A-Z
  • Books A-Z

Publish with us

  • Publish your research
  • Open access publishing

Products and services

  • Our products
  • Librarians
  • Societies
  • Partners and advertisers

Our imprints

  • Springer
  • Nature Portfolio
  • BMC
  • Palgrave Macmillan
  • Apress
  • Your US state privacy rights
  • Accessibility statement
  • Terms and conditions
  • Privacy policy
  • Help and support

167.114.118.210

Not affiliated

Springer Nature

© 2023 Springer Nature