Presentation 2003/7/11
Volume of Communications Necessary for Certificate Revocation in PKI Estimated Based on Probability Theory
Naoki TANAKA, Yoichiro IINO,
PDF Download Page PDF download Page Link
Abstract(in Japanese) (See Japanese page)
Abstract(in English) In Public Key Infrastructure (PKI), it is proposed that a verifier checks a validity of certificate by Certificate Revocation Lists (CRLs). Each CRL includes revocation statuses of certificates for a part of entities. A verifier obtains only a necessary part of CRLs and, by preserving a CRL once obtained, a verifier needs not obtain the same one more than once. Therefore CRL is expected to reduce the volume of communications necessary for certificate revocation. In this paper, for full-CRL and 8-CRL methods, we take into account the fact that one CRL is obtained by one verifier at most once and we derive the volume of communications necessary for certificate revocation based on probability theory. The result shows that, unless the frequency of authentications is sufficiently low compared to that of CRL issuances, the effect that a verifier obtains only a necessary part of CRLs is irrelevant to reduce the volume of communications. Furthermore, for the 8-CRL method, it is proved that there exists an optimal ratio between a frequency of BaseCRL issuances and a frequency of 8-CRL issuances independent of the number of CAs if the frequency of authentications is high enough.
Keyword(in Japanese) (See Japanese page)
Keyword(in English) Public Key Infrastructure / Certificate Revocation / Volume of Communications / Probability Theory
Paper # ISEC2003-35
Date of Issue

Conference Information
Committee ISEC
Conference Date 2003/7/11(1days)
Place (in Japanese) (See Japanese page)
Place (in English)
Topics (in Japanese) (See Japanese page)
Topics (in English)
Chair
Vice Chair
Secretary
Assistant

Paper Information
Registration To Information Security (ISEC)
Language JPN
Title (in Japanese) (See Japanese page)
Sub Title (in Japanese) (See Japanese page)
Title (in English) Volume of Communications Necessary for Certificate Revocation in PKI Estimated Based on Probability Theory
Sub Title (in English)
Keyword(1) Public Key Infrastructure
Keyword(2) Certificate Revocation
Keyword(3) Volume of Communications
Keyword(4) Probability Theory
1st Author's Name Naoki TANAKA
1st Author's Affiliation Sony Corporation()
2nd Author's Name Yoichiro IINO
2nd Author's Affiliation Sony Corporation
Date 2003/7/11
Paper # ISEC2003-35
Volume (vol) vol.103
Number (no) 196
Page pp.pp.-
#Pages 8
Date of Issue