[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

key revocation (was Re: The role of trust in certification)

To: Carl Ellison <cme@cybercash.com>
Subject: key revocation (was Re: The role of trust in certification)
From: Carl Ellison <cme@cybercash.com>
Date: Thu, 12 Mar 1998 16:50:21 -0500
Cc: Bob Blakley <blakley@us.ibm.com>, <uri@watson.ibm.com>, <egerck@laser.cps.softex.br>, <spki@c2.net>
In-Reply-To: <3.0.3.32.19980312105538.00abcbb0@cybercash.com>
References: <5040300012569838000002L082*@MHS>
Sender: owner-spki@c2.net

-----BEGIN PGP SIGNED MESSAGE-----

At 10:55 AM 3/12/98 -0500, Carl Ellison wrote:
>At 04:59 PM 2/13/98 -0500, Bob Blakley wrote:
>>The second and subsequent times I rely on the same certificate, the binding
>>between the CA key and the acceptor key, and the binding between the acceptor
>>key and a signed document, combine to give me confidence (assuming I believe
>>in the strength of cryptography; a whole other discussion) that I'm dealing
>>with the *same* parties with whom I have a past history.  

>What you really count on in this logic is that the person/machine operating 
>the private key is the same in the different instances.  The possession and 
>control of a private key is outside the control of a CA and certainly of a 
>certificate.

To answer myself here (bad habit, but...),

the CA mechanism might give a keyholder an avenue for declaring that
his key was stolen (assume he knows that).  That is, it might provide
the service of key revocation.

Key revocation is achievable with self-signed keys in two ways:

1.	With a self-signed PGP key on the PGP key server, the user can post
	a revocation if the key gets compromised.  This is anti-matter-like,
	however, since the verifier of that key isn't required to check the
	server each time.  This has the drawback that if the private key
	is missing, not just copied, the original user can't issue the
	revocation.

2.	With an SPKI cert, signed by the user's own key, the user can specify
	a limited lifetime so that the cert needs to be re-issued periodically.
	This way, if the private key goes missing, the default is that the
	certificate lifetime ends.  As long as the user has the private key
	and believes it's still his alone, he can issue update certs.  The cert
	would presumably point to where to get a new one (issuer-loc..) or
	to an on-line revalidation location.

 - Carl

-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Privacy 5.5.3

iQCVAwUBNQhYnRN3Wx8QwqUtAQGT6AP/Qw3dcppxfPA+0zwz/HFm16ou9zYxfK7A
/IJYVIqsOz8v3CRAKmdcOQL8981X/o6R7Z9se9xDCEI2UTSIvdTA8FZQOlLHP++0
wKg1baCV2qbOuJBXZxjNE57FUdxB3mX7FWyyLQ+farAYradgK+nScn9S5XG5fuzf
KmavRbUXGzY=
=pFGg
-----END PGP SIGNATURE-----


+------------------------------------------------------------------+
|Carl M. Ellison  cme@cybercash.com   http://www.clark.net/pub/cme |
|CyberCash, Inc.                      http://www.cybercash.com/    |
|207 Grindall Street  PGP 08FF BA05 599B 49D2  23C6 6FFD 36BA D342 |
|Baltimore MD 21230-4103  T:(410) 727-4288  F:(410)727-4293        |
+------------------------------------------------------------------+

References:

Re: The role of trust in certification

From: Bob Blakley <blakley@us.ibm.com>

Re: The role of trust in certification

From: Carl Ellison <cme@cybercash.com>

Prev by Date: Re: The role of trust in certification
Next by Date: Re: The role of trust in certification
Prev by thread: Re: The role of trust in certification
Next by thread: Re: The role of trust in certification
Index(es):
- Main
- Thread