Academic Journals Database
Disseminating quality controlled scientific knowledge

Notification Services for the Server-Based Certificate Validation Protocol

Author(s): Johannes BUCHMANN | Vangelis KARATSIOLIS

Journal: International Journal of Communications, Network and System Sciences
ISSN 1913-3715

Volume: 02;
Issue: 05;
Start page: 378;
Date: 2009;
Original page

Keywords: SCVP | Certification Path | Certification Path Construction | Certification Path Validation | X.509 Certificate

The Server-Based Certificate Validation Protocol allows PKI clients to delegate to a server the construction or validation of certification paths. The protocol’s specification focuses on the communication between the server and the client and its security. It does not discuss how the servers can efficiently locate the necessary PKI resources like certificate or certificate revocation lists. In this paper we concentrate on this topic. We present a simple and effective method to facilitate locating and using various PKI resources by the servers, without modifying the protocol. We use the extension mechanism of the protocol for notifying the servers about PKI repositories, certificates, and revocations. We specify the tasks of the servers and certificate issu-ers and define the messages that are exchanged between them. A proof of concept is given by implementing an SCVP server, a client, and the proposed method in Java.

Tango Jona
Tangokurs Rapperswil-Jona

RPA Switzerland

RPA Switzerland

Robotic process automation