(Network Services Basics) Notification of Certificate Revocation Status between Different Domains under a PKI System (<Special Issue> Object-Oriented Technologies)
スポンサーリンク
概要
- 論文の詳細を見る
When public key certificates are used to control access by a client in one domain to a server in another domain, the certificate revocation status should be distributed to the server domain too. For security reasons, the distribution of information to other domains should be minimized, and external distribution points are subject to attack from third parties on the Internet. In this paper, we propose a mechanism to convey the current revocation status of certificates to other domains securely under PKI (Public Key Infrastructure) system in WWW environment. Because our proposal does not need to modify the standard browsers, we can introduce the proposed method to the current WWW environment easily. We implemented prototype system of our proposal, and evaluated the system to prove the effectiveness of this system.
- 一般社団法人情報処理学会の論文
- 2003-06-15
著者
-
TANAKA Toshiaki
KDDI R & D Laboratories Inc.
-
NAKAO KOJI
KDDI RD Laboratories, Inc.
-
Miyake Yutaka
Kddi R&d Lab. Inc. Fujimino‐shi Jpn
-
Millen Jonathan
SRI International, Inc.
-
Denker Grit
SRI International, Inc.
-
Nakao Koji
Kddi R&apm;d Laboratories Inc.
-
Denker Grit
Sri International Inc.
-
Millen Jonathan
Sri International Inc.
-
Nakao Koji
Kddi Rd Laboratories Inc.
-
Miyake Yutaka
Kddi R & D Labs. Inc.
-
Miyake Yutaka
Kddi Rd Laboratories Inc.
-
Tanaka Toshiaki
Kddi Rd Laboratories Inc.
関連論文
- Gap Diffie-Hellman署名に基づいた階層表記型多重署名方式(情報セキュリティ,ライフログ活用技術,ライフインテリジェンス,オフィス情報システム,一般)
- 回覧文書閲覧確認に適した階層表記型多重署名方式の提案と実装評価(社会基盤としてのインターネットアーキテクチャ論文)
- B-19-16 ポインタ変数の符号化による難読化方式(B-19.ネットワークソフトウェア,一般セッション)
- A-7-9 SCHにおけるメッセージ入力(A-7.情報セキュリティ,一般セッション)
- Gap Diffie-Hellman署名に基づいた階層表記型多重署名方式(情報セキュリティ,ライフログ活用技術,ライフインテリジェンス,オフィス情報システム,一般)
- Analysis of Program Obfuscation Schemes with Variable Encoding Technique
- On Effectiveness of Clock Control in Stream Ciphers(Information Theory and Its Applications)
- Experimental Analysis of Guess-and-Determine Attacks on Clock-Controlled Stream Ciphers(Cryptography and Information Security, Information Theory and Its Applications)
- ストリーム暗号K2に対するサイドチャネル攻撃と対策手法
- B-19-23 任意型の変数の符号化による難読化方式(B-19.ネットワークソフトウェア,一般セッション)
- Web Tracking Site Detection Based on Temporal Link Analysis and Automatic Blacklist Generation
- Design and implementation of secure area expansion scheme for public wireless LAN services (特集 センサネットワーク)
- T/TCP for DNS: A Performance and Security Analysis (特集:新たな脅威に立ち向かうコンピュータセキュリティ技術)
- B-18-4 非接触型掌紋認証を用いたリモート認証システムの提案(B-18.バイオメトリックシステムセキュリティ,一般セッション)
- Universally composable client-to-client general authenticated key exchange (特集:情報システムを支えるコンピュータセキュリティ技術の再考)
- Universally Composable Client-to-Client General Authenticated Key Exchange
- B-19-18 難読化に基づくソフトウェア盗用の検知手法(B-19.ネットワークソフトウェア,一般セッション)
- A-7-9 SCHにおけるメッセージ入力関数の比較(A-7.情報セキュリティ,一般セッション)
- A-7-3 鍵交換プロトコルの安全性検証手法の実装(A-7.情報セキュリティ,一般セッション)
- A-7-2 環境に応じた暗号プロトコルの動的変更方式の提案(A-7. 情報セキュリティ,一般セッション)
- L-035 鍵交換プロトコルの安全性の検証ポイントに関する検討(ネットワーク・セキュリティ,一般論文)
- Efficient Implementation of the Pairing on Mobilephones Using BREW
- B-7-31 携帯電話上でのアイデンティティ管理技術に関する検討(B-7.情報ネットワーク,一般セッション)
- ワンセグ放送向けストリーム認証方式
- QoS Routing-Based Congestion Management over Active Internetworking System Using Stream Code (Special Issue on New Developments on QoS Technologies for Information Networks)
- PKI環境における異なるドメイン間での証明書失効状態通知方法の提案と設計
- PKI環境における異なるドメイン間での証明書失効状態通知方法の提案と設計
- Universally Composable Hierarchical Hybrid Authenticated Key Exchange(Protocols,Cryptography and Information Security)
- Review on Sufficient Conditions of SHA-0
- Proposal of a Transformation Method for Iris Codes in Iris Scanning Verification(Biometrics)(Cryptography and Information Security)
- A Fast (k, L, n)-Threshold Ramp Secret Sharing Scheme
- Design of Anonymous Attribute Authentication Mechanism
- A-7-3 Revocation and Addition Mechanisms for Fast (k, n)-Threshold Schemes
- On a Fast (K, n)-Threshold Secret Sharing Scheme
- Analysis of Program Obfuscation Schemes with Variable Encoding Technique
- A Fast (3, n)-Threshold Secret Sharing Scheme Using Exclusive-OR Operations
- Design of τ-Gradual Key-Management Schemes for Mobile Content Distribution (特集:ユビキタス時代を支えるモバイル通信と高度交通システム)
- An Obfuscation Scheme Using Affine Transformation and Its Implementation (特集:ユビキタス社会を支えるコンピュータセキュリティ技術)
- Design of Self-Delegation for Mobile Terminals (特集 多様な社会的責任を担うコンピュータセキュリティ技術)
- Design of Security Architecture for Beyond 3G Mobile Terminals (特集:プライバシを保護するコンピュータセキュリティ技術)
- (Network Services Basics) Notification of Certificate Revocation Status between Different Domains under a PKI System ( Object-Oriented Technologies)
- FOREWORD
- A-7-9 Key Management for Privacy Protection in Sensor Information Network using Threshold Cryptography
- A-7-18 Proposal of Privacy Protection Mechanism for Sensor Information Network
- Implementation and Evaluation of a Micropayment System for Mobile Environments (Security and Society)
- New Time-Stamping Scheme Using Mutual Communications with Pseudonymous Clients (Applications) (Cryptography and Information Security)
- New Time-Stamping Scheme Using Mutual Communications with Pseudonymous Clients
- A Study of Access Control Method for Mobile Agents by Using Secure Stubs (特集:新たな脅威に立ち向かうコンピュータセキュリティ技術)
- TCP Gateway for Satellite-based Internet Service Considering Accommodation of Multiple Customers (特集 次世代移動通信ネットワークとその応用)
- Web Tracking Site Detection Based on Temporal Link Analysis and Automatic Blacklist Generation
- Detection of Bot Infected PC Using Destination-based IP Address and Domain Name Whitelists
- Secure Host Name Resolution Infrastructure for Overlay Networks(Networking Technologies for Overlay Networks)
- データ重要度可視化手法の検討
- Improved Subset Difference Method with Ternary Tree
- 端末プラットホーム技術の研究開発について(総合報告)
- Service Independent Access Control Architecture for User Generated Content (UGC) and Its Implementation
- Zero-Knowledge and Correlation Intractability(Information Security)
- Evaluation of Mutational Capability and Real-Time Applicability of Obfuscation Techniques(Information Hiding, Cryptography and Information Security)
- 携帯電話におけるペアリング暗号の実装(情報セキュリティ基礎,電子情報通信分野における萌芽的研究論文)
- Software Protection Combined with Tamper-Proof Device
- 携帯電話におけるペアリング暗号の実装
- Optimization of Group Key Management Structure with a Client Join-Leave Mechanism
- Design of Self-Delegation for Mobile Terminals
- Design of Self-Delegation for Mobile Terminals
- Fast Implementation of KCipher-2 for Software and Hardware
- Chosen-IV Correlation Power Analysis on KCipher-2 Hardware and a Masking-Based Countermeasure
- FOREWORD
- Securing distributed storage systems based on arbitrary regenerating codes
- An Obfuscation Scheme Using Affine Transformation and Its Implementation
- BS-7-44 Decodability Attacks in XOR Network Coding
- An Obfuscation Scheme Using Affine Transformation and Its Implementation
- Optimization of Group Key Management Structure with a Client Join-Leave Mechanism