Paper 2000/027

Accountable Certificate Management using Undeniable Attestations

Ahto Buldas, Peeter Laud, and Helger Lipmaa

Abstract

This paper initiates a study of accountable certificate management methods, necessary to support long-term authenticity of digital documents. Our main contribution is a model for accountable certificate management, where clients receive attestations confirming inclusion/removal of their certificates from the database of valid certificates. We explain why accountability depends on the inability of the third parties to create contradictory attestations. After that we define an undeniable attester as a primitive that provides efficient attestation creation, publishing and verification, so that it is intractable to create contradictory attestations. We introduce authenticated search trees and build an efficient undeniable attester upon them. The proposed system is the first accountable long-term certificate management system. Moreover, authenticated search trees can be used in many security-critical applications instead of the (sorted) hash trees to reduce trust in the authorities, without decrease in efficiency. Therefore, the undeniable attester promises looks like a very useful cryptographic primitive with a wide range of applications.

Metadata
Available format(s)
PDF PS
Publication info
Published elsewhere. Revision corresponds to the final publication in <A HREF="http://www.ccs2000.org">ACM CCS '2000</A>.
Keywords
accountable certificate managementauthenticated search treesattesterslong-term authenticitynon-repudiationpublic-key infrastructuresearch treestime-stamping
Contact author(s)
helger @ tml hut fi
History
2000-08-22: last of 3 revisions
2000-06-08: received
See all versions
Short URL
https://ia.cr/2000/027
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2000/027,
      author = {Ahto Buldas and Peeter Laud and Helger Lipmaa},
      title = {Accountable Certificate Management using Undeniable Attestations},
      howpublished = {Cryptology ePrint Archive, Paper 2000/027},
      year = {2000},
      note = {\url{https://eprint.iacr.org/2000/027}},
      url = {https://eprint.iacr.org/2000/027}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.