Browse > Article

Distributed OCSP Certificate Verification Model for Reducing Response Time  

Choi Seung kwon (충북대학교 전기전자컴퓨터공학부)
Jang Yoon sik (SK 텔레콤)
Ji Hong il (충북대학교 전기전자컴퓨터공학부)
Shin Seung soo (동명정보대학교 정보보호학과)
Cho Yong hwan (충북대학교 전기전자컴퓨터공학부)
Publication Information
The Journal of Korean Institute of Communications and Information Sciences / v.30, no.4A, 2005 , pp. 304-311 More about this Journal
Abstract
OCSP has specific characters which can suspend, close, and correct in real time. But, as more clients use the OCSP server verification, more updated information is needed, which can lead to jamming in the OCSP server. To apply this technique of Distributed OCSP server so as to reduce the certificate verification OCSP from jamming. Also, the Distributed OCSP server will solve the problems of the intensive central structure. Simulation results show that the average reply time of certificate verification request and server load are reduced in the case using distributed OCSP. In addition to this advantage, resource distribution and fault tolerance are acquired because of multiple OCSP.
Keywords
OCSP; PKI; WPKI; certificate; verification;
Citations & Related Records
연도 인용수 순위
  • Reference
1 김현희, 'WPKI 기반의 무선 공인인증 서비스 개요', 지급결제와 정보기술, 금융결재원, 2003
2 채송화, 'CRL 분배 및 온라인 인증서 상태 확인 비교', 전자서명 인증관리 센터, 한국정보보호진흥원, 1999
3 Schneier. B, 'Applied Cryptography Protocols, Algorithms, and Source Code in C', Jone Wiley & Sons, New York, 1996
4 JalaI Feghhi, JaIil Feghhi, Peter Williams, 'Digital Certificates-Applied Internet Security', Addison Wesley, 1998.
5 R.L Rivest, A. Shamir and L. Adleman, 'A Method for obtaining digital signatures and public-key cryptosystems', ACM, Vol. 21. no.2, pp.644-654 Feb. 1978
6 '전자상거래를 위한 보안 기술 체계 및 요소 기술에 대한 이해', 한국전산원 차세대 서비스부, 1999. 6
7 이석래, '무선보안기술동향', 전자서명인증관리센터, 한국정보보호진흥원, 2002