A framework toward a self-organizing and self-healing certificate authority group in a Content Addressable Network

Author

Tassanaviboon, Anuchart ; Gong, Guang

Author_Institution

Dept. of Electr. & Comput. Eng., Univ. of Waterloo, Waterloo, ON, Canada

fYear

2010

fDate

11-13 Oct. 2010

Firstpage

614

Lastpage

621

Abstract

Public-key provision in on Internet scale is crucial for securing peer-to-peer (P2P) applications. This paper proposes a framework for a self-organizing and self-healing certificate authority (CA) in a Content Addressable Network (CAN) that can provide certificates without a centralized Trusted Third Party (TTP). In our framework, a CA group is initialized by bootstrapping nodes and then grows to a mature state by itself. Based on our group management policies, the membership in the CA group is dynamic and has a uniform distribution over the P2P community. Meanwhile, the honest majority of the CA group is maintained by a Byzantine agreement algorithm, and all shares of the CA group are refreshed gradually and continuously. A security analysis shows that the framework enables key registration and certificate issue with resistance to man-in-the-middle (MITM), collusion, and node impersonation attacks.

Keywords

Internet; content-addressable storage; peer-to-peer computing; Byzantine agreement algorithm; Internet; content addressable network; man-in-the-middle; peer-to-peer applications; public-key provision; security analysis; self-healing certificate authority; self-organizing certificate authority; trusted third party; Peer to peer computing;

fLanguage

English

Publisher

ieee

Conference_Titel

Wireless and Mobile Computing, Networking and Communications (WiMob), 2010 IEEE 6th International Conference on

Conference_Location

Niagara Falls, ON

Print_ISBN

978-1-4244-7743-2

Electronic_ISBN

978-1-4244-7741-8

Type

conf

DOI

10.1109/WIMOB.2010.5645002

Filename

5645002