Improvement of Performance for Online Certificate Status Validation


The KIPS Transactions:PartC, Vol. 10, No. 4, pp. 433-440, Aug. 2003
10.3745/KIPSTC.2003.10.4.433,   PDF Download:

Abstract

According as the real economic activities are carried out in the cyber world and the identity problem of a trade counterpart emerges, digital signature has been diffused. Due to the weakness for real-time validation using the validation method of digital signature, Certificate Revocation List, On-line Certificate Status Protocol was introduced. In this case, every transaction workload requested to verify digital signature is concentrated on a validation server node. Currently this method has been utilized on domestic financial transactions, but sooner or later the limitation will be revealed. In this paper, the validation method will be introduced which not only it can guarantee real-time validation but also the requesting node of certificate validation can maintain real-time certificate status information. This method makes the revocation management node update the certificate status information in real-time to the validation node while revoking certificate. The characteristic of this method is that the revocation management node should memorize the validation nodes which a certificate holder uses. If a certificate holder connects a validation node for the first time, the validation node should request its certificate status information to the above revocation management node and the revocation management node memorizes the validation node at the time. After that, the revocation management node inform the revocation information in real-time to all the validation node registered when a request of revocation happens. The benefits of this method are the fact that we can reduce the validation time because the certificate validation can be completed at the validation node and that we can avoid the concentration of requesting certificate status information to a revocation node.


Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from September 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article
[IEEE Style]
J. J. Dong and O. H. Seog, "Improvement of Performance for Online Certificate Status Validation," The KIPS Transactions:PartC, vol. 10, no. 4, pp. 433-440, 2003. DOI: 10.3745/KIPSTC.2003.10.4.433.

[ACM Style]
Jeong Jae Dong and O Hae Seog. 2003. Improvement of Performance for Online Certificate Status Validation. The KIPS Transactions:PartC, 10, 4, (2003), 433-440. DOI: 10.3745/KIPSTC.2003.10.4.433.