TY - GEN
T1 - NoPKI - a Point-to-Point Trusted Third Party Service Based on Blockchain Consensus Algorithm
AU - Chiu, Wei Yang
AU - Meng, Weizhi
AU - Jensen, Christian D.
PY - 2020
Y1 - 2020
N2 - The increasingly interconnected network results in the change of information flow between users and service providers, hence there is an emerging need for building a secure channel for connections. Currently, Public Key Infrastructure System (shortly PKI), the hierarchical trust relationship system, is the most widely used cornerstone technology to help secure the communication channels. However, PKI recently concerns the users due to various security breaches, i.e., the compromised PKI allows attackers to issue any valid keys to the victim and decrypt any secure connections within the system. In this paper, we design a decentralized PKI system, called NoPKI, by leveraging the blockchain technology. The system has multiple small and trusted groups called the neighborhood, which can be formed dynamically. These neighbors are the players in each neighborhood, and each transaction in the PKI system (including registration, revocation, and validation) requires witnesses of neighbors. In the evaluation, we implement our system and validate that our system ensures not only long-term accessibility but also the certificate security and public audit-ability.
AB - The increasingly interconnected network results in the change of information flow between users and service providers, hence there is an emerging need for building a secure channel for connections. Currently, Public Key Infrastructure System (shortly PKI), the hierarchical trust relationship system, is the most widely used cornerstone technology to help secure the communication channels. However, PKI recently concerns the users due to various security breaches, i.e., the compromised PKI allows attackers to issue any valid keys to the victim and decrypt any secure connections within the system. In this paper, we design a decentralized PKI system, called NoPKI, by leveraging the blockchain technology. The system has multiple small and trusted groups called the neighborhood, which can be formed dynamically. These neighbors are the players in each neighborhood, and each transaction in the PKI system (including registration, revocation, and validation) requires witnesses of neighbors. In the evaluation, we implement our system and validate that our system ensures not only long-term accessibility but also the certificate security and public audit-ability.
KW - Blockchain
KW - Certificate authority
KW - Decentralized PKI
KW - Neighborhood
KW - Network security
KW - System trust
U2 - 10.1007/978-981-15-9739-8_16
DO - 10.1007/978-981-15-9739-8_16
M3 - Article in proceedings
AN - SCOPUS:85097387510
SN - 9789811597381
T3 - Communications in Computer and Information Science
SP - 197
EP - 214
BT - Frontiers in Cyber Security
A2 - Xu, Guangquan
A2 - Liang, Kaitai
A2 - Su, Chunhua
PB - Springer
T2 - 3<sup>rd</sup> International Conference on Frontiers in Cyber Security
Y2 - 15 November 2020 through 17 November 2020
ER -