Abstract
Digital certificate is the key element that implements trust and trust authentication in e-government and e-commerce, however CA may be canceled and revoked in advance by accident in practical applications. Therefore it is critical for the users of this certificate to obtain the latest certificate status as soon as possible, it is also critical for realizing credibility in PKI system. It summarizes the advantages and disadvantages in PKI system, and discusses the difficulties in practical application by analyzing the OCSP protocol. Some corresponding methods are proposed to solve the above problems.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Deng, X.: Analysis and research mechanism of certificate revocation. Computer Engineering and Design 28(7), 1538–1540 (2007)
Housley, R., Polk, W., Solo, D.: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile[S]. RFC 3280 (2002)
Liu, X., Jiang, X.: Study of a certificate status information distributi on approach based on Over-Issued CRL mechanism. Journal of Zhejiang University (Engineering Science) 36(2), 224–226 (2002)
Zheng, Z., Yu, Z.: An improved CRL schema based on segementation. Computer Application and Software 26(12), 271–273 (2009)
Myers, M., Ankney, R.: X.509 Internet Public Key Infrastructure Online Certificate Status Protocol – OCSP. RFC 2560 (1999)
Gutmann, P.: X.509 Internet Public Key Infrastructure Real-time Certificate Status Facility for OCSP. RFC draft (2002)
Pinkas, D., Pinkas, D., Pope, N.: Electronic Signature Formats for long term electronic signatures. RFC 3126 (2001)
Housley, R.: Cryptographic Message Syntax (CMS). RFC 3369 (2002)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Deng, X., Yang, G., Wen, Z., Zhang, T., Deng, B. (2011). Analysis and Amend Online Certificate Service Protocols. In: Lee, J. (eds) Advanced Electrical and Electronics Engineering. Lecture Notes in Electrical Engineering, vol 87. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-19712-3_38
Download citation
DOI: https://doi.org/10.1007/978-3-642-19712-3_38
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-19711-6
Online ISBN: 978-3-642-19712-3
eBook Packages: EngineeringEngineering (R0)