TU Darmstadt / ULB / TUbiblio

Secure and Privacy-Friendly Public Key Generation and Certification

Borges, Fábio and Martucci, Leonardo A. and Beato, Filipe and Mühlhäuser, Max (2014):
Secure and Privacy-Friendly Public Key Generation and Certification.
IEEE CS, In: Proceedings of the 13th IEEE TrustCom 2014, [Conference or Workshop Item]

Abstract

Digital societies increasingly rely on secure communication between parties. Certificate enrollment protocols are used by certificate authorities to issue public key certificates to clients. Key agreement protocols, such as Diffie-Hellman, are used to compute secret keys, using public keys as input, for establishing secure communication channels. Whenever the keys are generated by clients, the bootstrap process requires either (a) an out-of-band verification for certification of keys when those are generated by the clients themselves, or (b) a trusted server to generate both the public and secret parameters. This paper presents a novel constrained key agreement protocol, built upon a constrained Diffie-Hellman, which is used to generate a secure public-private key pair, and to set up a certification environment without disclosing the private keys. In this way, the servers can guarantee that the generated key parameters are safe, and the clients do not disclose any secret information to the servers.

Item Type: Conference or Workshop Item
Erschienen: 2014
Creators: Borges, Fábio and Martucci, Leonardo A. and Beato, Filipe and Mühlhäuser, Max
Title: Secure and Privacy-Friendly Public Key Generation and Certification
Language: English
Abstract:

Digital societies increasingly rely on secure communication between parties. Certificate enrollment protocols are used by certificate authorities to issue public key certificates to clients. Key agreement protocols, such as Diffie-Hellman, are used to compute secret keys, using public keys as input, for establishing secure communication channels. Whenever the keys are generated by clients, the bootstrap process requires either (a) an out-of-band verification for certification of keys when those are generated by the clients themselves, or (b) a trusted server to generate both the public and secret parameters. This paper presents a novel constrained key agreement protocol, built upon a constrained Diffie-Hellman, which is used to generate a secure public-private key pair, and to set up a certification environment without disclosing the private keys. In this way, the servers can guarantee that the generated key parameters are safe, and the clients do not disclose any secret information to the servers.

Publisher: IEEE CS
Divisions: 20 Department of Computer Science > Telecooperation
20 Department of Computer Science
Event Title: Proceedings of the 13th IEEE TrustCom 2014
Date Deposited: 16 Mar 2015 16:31
Additional Information:

To Appear

Export:

Optionen (nur für Redakteure)

View Item View Item