Professional Documents
Culture Documents
Bridge-based PKI
It is used for secure communication between
organization in business partnership.
A bridge CA is introduced that establishes a trust relation with a representatives CA from
each organization.
Certificate Revocation
• the act of stating officially that an agreement, right, or legal
document is no longer effective
Public Key Infrastructure Consists of certifying authorities and users.
Any user checks for certificate validity, provided by
Certificate status information.
1. Certificate revocation list (CRL).
2. Online certificate status protocol (OCSP).
• Certificate Revocation Lists
CA periodically issues the list of revoked certificates.
Frequency of list updating is an important consideration
• Example: issue new CRL every month
High transmission cost: complete list must be downloaded by any party
who wants to check the status of a certificate.