A Distributed Certificate Management System (DCMS) Supporting Group-Based Access Controls

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Rolf Oppliger Articles by Andreas Greulich Articles by Peter Trachsel

15th Annual Computer Security Applications Conference (ACSAC '99)

Phoenix, Arizona

December 06-December 10

ISBN: 0-7695-0346-2

	ASCII Text	x
	Rolf Oppliger, Andreas Greulich, Peter Trachsel, "A Distributed Certificate Management System (DCMS) Supporting Group-Based Access Controls," Computer Security Applications Conference, Annual, pp. 241, 15th Annual Computer Security Applications Conference (ACSAC '99), 1999.

	BibTex	x
	@article{ 10.1109/CSAC.1999.816033, author = {Rolf Oppliger and Andreas Greulich and Peter Trachsel}, title = {A Distributed Certificate Management System (DCMS) Supporting Group-Based Access Controls}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {1999}, issn = {1063-9527}, pages = {241}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSAC.1999.816033}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - A Distributed Certificate Management System (DCMS) Supporting Group-Based Access Controls SN - 1063-9527 SP EP A1 - Rolf Oppliger, A1 - Andreas Greulich, A1 - Peter Trachsel, PY - 1999 KW - Public key cryptography KW - public key infrastructure (PKI) KW - public key certificate KW - certification authority (CA) VL - 0 JA - Computer Security Applications Conference, Annual ER -

Rolf Oppliger, Swiss Federal Strategy Unit for Information Technology FSUIT

Andreas Greulich, Swiss Federal Strategy Unit for Information Technology FSUIT

Peter Trachsel, Swiss Federal Strategy Unit for Information Technology FSUIT

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CSAC.1999.816033

Mainly for scalability reasons, many cryptographic security protocols make use of public key cryptography and require the existence of a corresponding public key infrastructure (PKI). A PKI, in turn, consists of one or several certification authorities (CAs) that issue and revoke certificates for users and other CAs. Contrary to its conceptual simplicity, the establishment and operational maintenance of a CA or PKI has turned out to be difficult in practice. As a viable alternative, this paper proposes an architecture for a distributed certificate management system (DCMS) that can also be used to provide support for group-based access controls. The architecture has been prototyped and is being used by the Swiss Federal Strategy Unit for Information Technology (FSUIT) to protect access to intranet resources.

Index Terms:

Public key cryptography, public key infrastructure (PKI), public key certificate, certification authority (CA)

Citation:

Rolf Oppliger, Andreas Greulich, Peter Trachsel, "A Distributed Certificate Management System (DCMS) Supporting Group-Based Access Controls," acsac, pp.241, 15th Annual Computer Security Applications Conference (ACSAC '99), 1999

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.