Digital certificate management: Optimal pricing and CRL releasing strategies

The fast growth of e-commerce and online activities places increasing needs for authentication and secure communication to enable information exchange and online transactions. The public key infrastructure (PKI) provides a promising foundation for meeting such demand, in which certificate authoritie...

Full description

Saved in:
Bibliographic Details
Main Authors: ZHANG, Jie, HU, Nan, Raka, M. K.
Format: text
Language:English
Published: Institutional Knowledge at Singapore Management University 2014
Subjects:
Online Access:https://ink.library.smu.edu.sg/sis_research/8016
https://ink.library.smu.edu.sg/context/sis_research/article/9019/viewcontent/DigitalCertificateManagement_av.pdf
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Singapore Management University
Language: English
id sg-smu-ink.sis_research-9019
record_format dspace
spelling sg-smu-ink.sis_research-90192023-08-11T08:34:58Z Digital certificate management: Optimal pricing and CRL releasing strategies ZHANG, Jie HU, Nan Raka, M. K. The fast growth of e-commerce and online activities places increasing needs for authentication and secure communication to enable information exchange and online transactions. The public key infrastructure (PKI) provides a promising foundation for meeting such demand, in which certificate authorities (CAs) provide digital certificates. In practice, it is critical to understand consumer purchasing and revocation behaviors so that CAs can better manage the digital certificates and its CRL releasing process. To address this problem, we analytically model a CA's pricing and revocation releasing strategies taking into consideration the users' rational decisions. The model provides solutions two main research questions: (1) How should the CA price the digital certificates? The the price of the digital certificate should be determined by the expected losses of the user's IT system, and the number of certificate revocations per period is expected to decrease over time during the lifecycle of the certificate. This result is supported by the empirical data from VeriSign. (2) How should the CA we further propose a dynamic CRL releasing policy that suggests that the optimal releasing intervals within the lifecycle of a certificate should increase over time. 2014-02-01T08:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/8016 info:doi/10.1016/j.dss.2012.12.043 https://ink.library.smu.edu.sg/context/sis_research/article/9019/viewcontent/DigitalCertificateManagement_av.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Security management Key Infrastructure (PKI) Certificate Authority (CA) Certificate Revocation List (CRL) Dynamic programming algorithm Databases and Information Systems Theory and Algorithms
institution Singapore Management University
building SMU Libraries
continent Asia
country Singapore
Singapore
content_provider SMU Libraries
collection InK@SMU
language English
topic Security management
Key Infrastructure (PKI)
Certificate Authority (CA)
Certificate Revocation List (CRL)
Dynamic programming algorithm
Databases and Information Systems
Theory and Algorithms
spellingShingle Security management
Key Infrastructure (PKI)
Certificate Authority (CA)
Certificate Revocation List (CRL)
Dynamic programming algorithm
Databases and Information Systems
Theory and Algorithms
ZHANG, Jie
HU, Nan
Raka, M. K.
Digital certificate management: Optimal pricing and CRL releasing strategies
description The fast growth of e-commerce and online activities places increasing needs for authentication and secure communication to enable information exchange and online transactions. The public key infrastructure (PKI) provides a promising foundation for meeting such demand, in which certificate authorities (CAs) provide digital certificates. In practice, it is critical to understand consumer purchasing and revocation behaviors so that CAs can better manage the digital certificates and its CRL releasing process. To address this problem, we analytically model a CA's pricing and revocation releasing strategies taking into consideration the users' rational decisions. The model provides solutions two main research questions: (1) How should the CA price the digital certificates? The the price of the digital certificate should be determined by the expected losses of the user's IT system, and the number of certificate revocations per period is expected to decrease over time during the lifecycle of the certificate. This result is supported by the empirical data from VeriSign. (2) How should the CA we further propose a dynamic CRL releasing policy that suggests that the optimal releasing intervals within the lifecycle of a certificate should increase over time.
format text
author ZHANG, Jie
HU, Nan
Raka, M. K.
author_facet ZHANG, Jie
HU, Nan
Raka, M. K.
author_sort ZHANG, Jie
title Digital certificate management: Optimal pricing and CRL releasing strategies
title_short Digital certificate management: Optimal pricing and CRL releasing strategies
title_full Digital certificate management: Optimal pricing and CRL releasing strategies
title_fullStr Digital certificate management: Optimal pricing and CRL releasing strategies
title_full_unstemmed Digital certificate management: Optimal pricing and CRL releasing strategies
title_sort digital certificate management: optimal pricing and crl releasing strategies
publisher Institutional Knowledge at Singapore Management University
publishDate 2014
url https://ink.library.smu.edu.sg/sis_research/8016
https://ink.library.smu.edu.sg/context/sis_research/article/9019/viewcontent/DigitalCertificateManagement_av.pdf
_version_ 1779156856298536960