How to incorporate revocation status information into the trust metrics for public-key certification

Bicakci K., Crispo B., Tanenbaum A. S.

20th Annual ACM Symposium on Applied Computing, Santa Fe, NM, United States Of America, 13 - 17 March 2005, vol.2, pp.1594-1598 identifier

  • Publication Type: Conference Paper / Full Text
  • Volume: 2
  • Doi Number: 10.1145/1066677.1067037
  • City: Santa Fe, NM
  • Country: United States Of America
  • Page Numbers: pp.1594-1598
  • Keywords: PKI, Public Key Certificates, Revocation, Trust Metrics
  • Istanbul Technical University Affiliated: No


In a traditional PKI, the trust associated with a public key is expressed in binary either by 0 or 1. Alternatively, several authors have proposed trust metrics to evaluate the confidence afforded by a public key. However their work has a static point of view and does not take into account the issue of public key revocation. In this paper, we make the first attempt to incorporate the revocation status information into the trust metrics for public key certification. To achieve our goal, we use a tailored form of a vector of trust model recently proposed. This would allow us to reason formally about when there is a need to check revocation status and how reliable the revocation mechanism should be in a given security application. Copyright 2005 ACM.