{"title":"基于PKI的软件复兴","authors":"A. Platis, V. Koutras","doi":"10.1109/WOSAR.2010.5722102","DOIUrl":null,"url":null,"abstract":"One of the major issues for PKI-based mechanisms is the validity of user's certificate. In order to examine whether a certificate is valid or not, the PKI Certificate Authority (CA) has to check the most recent Certificate Revocation List (CRL) that maintains. But the CRL is not always available when is needed. In such a case the problem to be solved is whether to proceed to a transaction or abandon it. One of the main reasons for CRL's unavailability is the CA's server unavailability. In this paper we innovatively propose to adopt software rejuvenation to reduce the probability that CA's cannot issue the CRL. Using a Markovbased model, an indicator is derived, concerning the cost of security incidents and abandoned transactions The aim of the present work consists firstly in defining a threshold under which a transaction can be accomplished even without checking the CRL and secondly in scheduling software rejuvenation on CA's server such that the total operational cost is minimized)","PeriodicalId":244055,"journal":{"name":"2010 IEEE Second International Workshop on Software Aging and Rejuvenation","volume":"70 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Software rejuvenation on a PKI\",\"authors\":\"A. Platis, V. Koutras\",\"doi\":\"10.1109/WOSAR.2010.5722102\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"One of the major issues for PKI-based mechanisms is the validity of user's certificate. In order to examine whether a certificate is valid or not, the PKI Certificate Authority (CA) has to check the most recent Certificate Revocation List (CRL) that maintains. But the CRL is not always available when is needed. In such a case the problem to be solved is whether to proceed to a transaction or abandon it. One of the main reasons for CRL's unavailability is the CA's server unavailability. In this paper we innovatively propose to adopt software rejuvenation to reduce the probability that CA's cannot issue the CRL. Using a Markovbased model, an indicator is derived, concerning the cost of security incidents and abandoned transactions The aim of the present work consists firstly in defining a threshold under which a transaction can be accomplished even without checking the CRL and secondly in scheduling software rejuvenation on CA's server such that the total operational cost is minimized)\",\"PeriodicalId\":244055,\"journal\":{\"name\":\"2010 IEEE Second International Workshop on Software Aging and Rejuvenation\",\"volume\":\"70 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2010-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2010 IEEE Second International Workshop on Software Aging and Rejuvenation\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/WOSAR.2010.5722102\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 IEEE Second International Workshop on Software Aging and Rejuvenation","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/WOSAR.2010.5722102","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
One of the major issues for PKI-based mechanisms is the validity of user's certificate. In order to examine whether a certificate is valid or not, the PKI Certificate Authority (CA) has to check the most recent Certificate Revocation List (CRL) that maintains. But the CRL is not always available when is needed. In such a case the problem to be solved is whether to proceed to a transaction or abandon it. One of the main reasons for CRL's unavailability is the CA's server unavailability. In this paper we innovatively propose to adopt software rejuvenation to reduce the probability that CA's cannot issue the CRL. Using a Markovbased model, an indicator is derived, concerning the cost of security incidents and abandoned transactions The aim of the present work consists firstly in defining a threshold under which a transaction can be accomplished even without checking the CRL and secondly in scheduling software rejuvenation on CA's server such that the total operational cost is minimized)
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
