Skip to main content
SpringerLink
Log in

Efficient Signature Validation Based on a New PKI

  • Conference paper
E-Commerce and Web Technologies (EC-Web 2003)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2738))

Included in the following conference series:

Abstract

Digital signatures usually serve as irrefutable cryptographic evidence to support dispute resolution in electronic transactions. Trusted time-stamping and certificate revocation services, although very costly in practice, must be available to prevent big loss due to compromising of the signing key. In this paper, we employ a revocation-free public-key framework to improve the efficiency in maintaining the validity of digital signatures as non-repudiation evidence. The new PKI allows an end user to control the validity of his own public-key certificate and enables certificate verification without retrieving the revocation information from the CA. Based on this new PKI, we could validate generic digital signatures using a TSA only. Moreover, we could validate forward-secure digital signatures without the TTP’s involvement.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Aiello, W., Lodha, S., Ostrovsky, R.: Fast digital identity revocation. In: Krawczyk, H. (ed.) CRYPTO 1998. LNCS, vol. 1462, pp. 137–152. Springer, Heidelberg (1998)

    Google Scholar 

  2. Abdalla, M., Reyzin, L.: A new forward-secure digital signature scheme. In: Okamoto, T. (ed.) ASIACRYPT 2000. LNCS, vol. 1976, pp. 116–129. Springer, Heidelberg (2000)

    Chapter  Google Scholar 

  3. Bellare, M., Miner, S.: A forward-secure digital signature scheme. In: Wiener, M. (ed.) CRYPTO 1999. LNCS, vol. 1666, pp. 431–438. Springer, Heidelberg (1999)

    Google Scholar 

  4. Booth, K.S.: Authentication of signatures using public key encryption. Communications of the ACM 24(11), 772–774 (1981)

    Article  Google Scholar 

  5. Cooper, D.: A more efficient use of delta-CRLs. In: Proceedings of 2000 IEEE Symposium on Security and Privacy, Oakland, California, pp. 190–202 (May 2000)

    Google Scholar 

  6. ISO/IEC 13888-1. Information technology - Security techniques -Non-repudiation - Part 1: General. ISO/IEC (1997)

    Google Scholar 

  7. Itkis, G., Reyzin, L.: Forward-secure signatures with optimal signing and verifying. In: Kilian, J. (ed.) CRYPTO 2001. LNCS, vol. 2139, pp. 332–354. Springer, Heidelberg (2001)

    Chapter  Google Scholar 

  8. Itkis, G., Reyzin, L.: SiBIR: Signer-base intrusion-resilient signatures. In: Yung, M. (ed.) CRYPTO 2002. LNCS, vol. 2442, pp. 499–514. Springer, Heidelberg (2002)

    Chapter  Google Scholar 

  9. Kocher, P.: On certificate revocation and validation. In: Hirschfeld, R. (ed.) FC 1998. LNCS, vol. 1465, pp. 172–177. Springer, Heidelberg (1998)

    Chapter  Google Scholar 

  10. Krawczyk, H.: Simple forward-secure signatures from any signature scheme. In: Proceedings of 7th ACM Conference on Computer and Communications Security, Athens, Greece, pp. 108–115 (November 2000)

    Google Scholar 

  11. Lamport, L.: Password authentication with insecure communication. Communications of the ACM 24(11), 770–772 (1981)

    Article  MathSciNet  Google Scholar 

  12. Micali, S.: Certificate revocation system. US Patent 6292893 (September 2001)

    Google Scholar 

  13. McDaniel, P., Jamin, S.: Windowed certificate revocation. In: Proceedings of IEEE INFOCOM 2000, Tel-Aviv, Israel, pp. 1406–1414 (March 2000)

    Google Scholar 

  14. Naor, M., Nissim, K.: Certificate revocation and certificate update. In: Proceedings 7th USENIX Security Symposium, San Antonio, Texas (January 1998)

    Google Scholar 

  15. Housley, R., Ford, W., Polk, W., Solo, D.: Internet X.509 public key infrastructure certificate and CRL profile. RFC 2459 (January 1999)

    Google Scholar 

  16. Myers, M., Ankney, R., Malpani, A., Galperin, S., Adams, C.: X. 509 Internet public key infrastructure on-line certificate status protocol (OCSP). RFC 2560 (June 1999)

    Google Scholar 

  17. Admas, C., Cain, P., Pinkas, D., Zuccherato, R.: Internet X. 509 public key infrastructure time-stamp protocol (TSP). RFC 3161 (August 2001)

    Google Scholar 

  18. Wright, R., Lincoln, P., Millen, J.: Efficient fault-tolerant certificate revocation. In: Proceedings of 7th ACM Conference on Computer and Communications Security, Athens, Greece, pp. 19–24 (November 2000)

    Google Scholar 

  19. Zhou, J.: Non-repudiation in electronic commerce. Computer Security Series. Artech House (2001)

    Google Scholar 

  20. Zhou, J.: Maintaining the validity of digital signatures in B2B applications. In: Batten, L.M., Seberry, J. (eds.) ACISP 2002. LNCS, vol. 2384, pp. 303–315. Springer, Heidelberg (2002)

    Chapter  Google Scholar 

  21. Zhou, J., Bao, F., Deng, R.: NewPKI. Internal document (2002)

    Google Scholar 

  22. Zhou, J., Lam, K.Y.: Securing digital signatures for nonrepudiation. Computer Communications 22(8), 710–716 (1999)

    Article  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Institute for Infocomm Research, 21 Heng Mui Keng Terrace, Singapore, 119613

    Jianying Zhou

Authors
  1. Jianying Zhou
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. University of Zurich, Department of Informatics (IFI), Winterthurer Stra{Ăź}e 190, 8057, Zurich, Switzerland

    Kurt Bauknecht

  2. Institute of Software Technology and Interactive Systems, Vienna University of Technology, Favoritenstr. 9-11/188, A-1040,, Wien, Austria

    A Min Tjoa

  3. Division of Information Technology, Engineering and the Environment, School of Computer and Information Science, University of South Australia, 5095, Mawson Lakes, SA, Australia

    Gerald Quirchmayr

Rights and permissions

Reprints and permissions

Copyright information

© 2003 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Zhou, J. (2003). Efficient Signature Validation Based on a New PKI. In: Bauknecht, K., Tjoa, A.M., Quirchmayr, G. (eds) E-Commerce and Web Technologies. EC-Web 2003. Lecture Notes in Computer Science, vol 2738. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-45229-4_10

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-45229-4_10

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-40808-6

  • Online ISBN: 978-3-540-45229-4

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation