Title :
Software rejuvenation on a PKI
Author :
Platis, A.N. ; Koutras, V.P.
Author_Institution :
Dept. of Financial & Manage. Eng., Univ. of the Aegean, Chios, Greece
Abstract :
One of the major issues for PKI-based mechanisms is the validity of user´s certificate. In order to examine whether a certificate is valid or not, the PKI Certificate Authority (CA) has to check the most recent Certificate Revocation List (CRL) that maintains. But the CRL is not always available when is needed. In such a case the problem to be solved is whether to proceed to a transaction or abandon it. One of the main reasons for CRL´s unavailability is the CA´s server unavailability. In this paper we innovatively propose to adopt software rejuvenation to reduce the probability that CA´s cannot issue the CRL. Using a Markovbased model, an indicator is derived, concerning the cost of security incidents and abandoned transactions The aim of the present work consists firstly in defining a threshold under which a transaction can be accomplished even without checking the CRL and secondly in scheduling software rejuvenation on CA´s server such that the total operational cost is minimized).
Keywords :
Markov processes; public key cryptography; software performance evaluation; software reliability; Markovbased model; PKI certificate authority; PKI-based mechanisms; certificate revocation list; software rejuvenation; Aging; Markov processes; Security; Servers; Silicon; Software; Steady-state; Markov modeling; PKI; certificate revocation; expected cost; software rejuvenation;
Conference_Titel :
Software Aging and Rejuvenation (WoSAR), 2010 IEEE Second International Workshop on
Conference_Location :
San Jose, CA
Print_ISBN :
978-1-61284-344-5
DOI :
10.1109/WOSAR.2010.5722102
