Hardening X.509 Certificate Issuance using Distributed Ledger Technology

Item request has been placed! ×
Item request cannot be made. ×
loading   Processing Request
  • Additional Information
    • Publication Information:
      IEEE
    • Publication Date:
      2020
    • Abstract:
      The security of cryptographic communication protocols that use X.509 certificates depends on the correctness of those certificates. This paper proposes a system that helps to ensure the correct operation of an X.509 certification authority and its registration authorities. We achieve this goal by enforcing a policy-defined, multi-party validation and authorization workflow of certificate signing requests. Besides, our system offers full accountability for this workflow for forensic purposes. As a foundation for our implementation, we leverage the distributed ledger and smart contract framework Hyperledger Fabric. Our implementation inherits the strong tamper-resistance of Fabric which strengthens the integrity of the computer processes that enforce the validation and authorization of the certificate signing request, and of the metadata collected during certificate issuance.
    • Contents Note:
      Conference Acronym: NOMS
    • Author Affiliations:
      Technische Universität München,Department of Informatics,München,Germany,85748
    • ISBN:
      978-1-7281-4973-8
    • ISSN:
      2374-9709
    • Relation:
      NOMS 2020-2020 IEEE/IFIP Network Operations and Management Symposium
    • Accession Number:
      10.1109/NOMS47738.2020.9110311
    • Rights:
      Copyright 2020, IEEE
    • AMSID:
      9110311
    • Conference Acronym:
      NOMS
    • Date of Current Version:
      2020
    • Document Subtype:
      IEEE Conference
    • Notes:
      Conference Location: Budapest, Hungary, Hungary

      Conference Start Date: 20 April 2020

      Conference End Date: 24 April 2020
    • Accession Number:
      edseee.9110311
  • Citations
    • ABNT:
      KINKELIN, H. et al. Hardening X.509 Certificate Issuance using Distributed Ledger Technology. NOMS 2020 - 2020 IEEE/IFIP Network Operations and Management Symposium, Network Operations and Management Symposium, NOMS 2020 - 2020 IEEE/IFIP, [s. l.], p. 1–6, 2020. DOI 10.1109/NOMS47738.2020.9110311. Disponível em: http://search.ebscohost.com/login.aspx?direct=true&site=eds-live&db=edseee&AN=edseee.9110311. Acesso em: 15 ago. 2020.
    • AMA:
      Kinkelin H, von Seck R, Rudolf C, Carle G. Hardening X.509 Certificate Issuance using Distributed Ledger Technology. NOMS 2020 - 2020 IEEE/IFIP Network Operations and Management Symposium, Network Operations and Management Symposium, NOMS 2020 - 2020 IEEE/IFIP. April 2020:1-6. doi:10.1109/NOMS47738.2020.9110311
    • APA:
      Kinkelin, H., von Seck, R., Rudolf, C., & Carle, G. (2020). Hardening X.509 Certificate Issuance using Distributed Ledger Technology. NOMS 2020 - 2020 IEEE/IFIP Network Operations and Management Symposium, Network Operations and Management Symposium, NOMS 2020 - 2020 IEEE/IFIP, 1–6. https://doi.org/10.1109/NOMS47738.2020.9110311
    • Chicago/Turabian: Author-Date:
      Kinkelin, Holger, Richard von Seck, Christoph Rudolf, and Georg Carle. 2020. “Hardening X.509 Certificate Issuance Using Distributed Ledger Technology.” NOMS 2020 - 2020 IEEE/IFIP Network Operations and Management Symposium, Network Operations and Management Symposium, NOMS 2020 - 2020 IEEE/IFIP, April, 1–6. doi:10.1109/NOMS47738.2020.9110311.
    • Harvard:
      Kinkelin, H. et al. (2020) ‘Hardening X.509 Certificate Issuance using Distributed Ledger Technology’, NOMS 2020 - 2020 IEEE/IFIP Network Operations and Management Symposium, Network Operations and Management Symposium, NOMS 2020 - 2020 IEEE/IFIP, pp. 1–6. doi: 10.1109/NOMS47738.2020.9110311.
    • Harvard: Australian:
      Kinkelin, H, von Seck, R, Rudolf, C & Carle, G 2020, ‘Hardening X.509 Certificate Issuance using Distributed Ledger Technology’, NOMS 2020 - 2020 IEEE/IFIP Network Operations and Management Symposium, Network Operations and Management Symposium, NOMS 2020 - 2020 IEEE/IFIP, pp. 1–6, viewed 15 August 2020, .
    • MLA:
      Kinkelin, Holger, et al. “Hardening X.509 Certificate Issuance Using Distributed Ledger Technology.” NOMS 2020 - 2020 IEEE/IFIP Network Operations and Management Symposium, Network Operations and Management Symposium, NOMS 2020 - 2020 IEEE/IFIP, Apr. 2020, pp. 1–6. EBSCOhost, doi:10.1109/NOMS47738.2020.9110311.
    • Chicago/Turabian: Humanities:
      Kinkelin, Holger, Richard von Seck, Christoph Rudolf, and Georg Carle. “Hardening X.509 Certificate Issuance Using Distributed Ledger Technology.” NOMS 2020 - 2020 IEEE/IFIP Network Operations and Management Symposium, Network Operations and Management Symposium, NOMS 2020 - 2020 IEEE/IFIP, April 1, 2020, 1–6. doi:10.1109/NOMS47738.2020.9110311.
    • Vancouver/ICMJE:
      Kinkelin H, von Seck R, Rudolf C, Carle G. Hardening X.509 Certificate Issuance using Distributed Ledger Technology. NOMS 2020 - 2020 IEEE/IFIP Network Operations and Management Symposium, Network Operations and Management Symposium, NOMS 2020 - 2020 IEEE/IFIP [Internet]. 2020 Apr 1 [cited 2020 Aug 15];1–6. Available from: http://search.ebscohost.com/login.aspx?direct=true&site=eds-live&db=edseee&AN=edseee.9110311