Title:
|
A modeling of certificate revocation and its application to synthesis of revocation traces
|
Author:
|
Hernández Gañán, Carlos; Mata Diaz, Jorge; Muñoz Tapia, José Luis; Hernández Serrano, Juan; Esparza Martín, Óscar; Alins Delgado, Juan José
|
Other authors:
|
Universitat Politècnica de Catalunya. Departament d'Enginyeria Telemàtica; Universitat Politècnica de Catalunya. SERTEL - Serveis Telemàtics |
Abstract:
|
One of the hardest tasks of a public key infrastructure (PKI) is to manage revocation. New
communication paradigms push the revocation system to the limit and an accurate resource assessment
is necessary before implementing a particular revocation distribution system. In this context, a precise
modeling of certificate revocation is necessary. In this article, we analyze empirical data from real
CAs to develop an accurate and rigorous model for certificate revocation. One of the key findings of
our analysis is that the certificate revocation process is statistically self-similar. The proposed model
is based on an autoregressive fractionally integrated moving average (ARFIMA) process. Then, using
this model, we show how to build a synthetic revocation generator that can be used in simulations
for resource assessment. Finally, we also show that our model produces synthetic revocation traces
that are indistinguishable for practical purposes from those corresponding to actual revocations. |
Abstract:
|
Peer Reviewed |
Subject(s):
|
-Àrees temàtiques de la UPC::Enginyeria de la telecomunicació::Telemàtica i xarxes d'ordinadors::Serveis telemàtics i de comunicació multimèdia -Computer security -Seguretat informàtica |
Rights:
|
|
Document type:
|
Article - Submitted version Article |
Share:
|
|