ABSTRACT

Survey and Security Strength Classification of PKI Certificate Revocation Management Implementations   [open pdf - 1MB]

From the thesis abstract: "In this thesis, I define all currently operational, proposed, and theoretically possible methods of certificate revocation. The role of certificate revocation within the larger scheme of PKI [Public Key Infrastructure] is examined and the mandates upon Department of Defense from the Certification Practices Statement (CPS) and Certificate Policy (CP) are examined. A 'best case' model for revocation is suggested. The security attributes affecting certificate revocation are examined; from these attributes a set of metrics are defined for the purpose of measuring the security-relevant strengths and weaknesses of all plausible methods of certificate revocation. Each method is examined and ranked according to security strength. Conclusions regarding certificate revocation use within Department of Defense are made and further study within the field is suggested."

Author:
Publisher:
Date:
2003-12
Copyright:
Public Domain
Retrieved From:
Naval Postgraduate School, Dudley Knox Library: http://www.nps.edu/Library/
Format:
pdf
Media Type:
application/pdf
URL:
Help with citations