Abstract
The current Internet web trust system is based on the traditional PKI system, to achieve the purpose of secure communication through the trusted third party. However, with the increase of network nodes, various problems appear in the centralization system of public key infrastructure (PKI). In recent years, in addition to cryptographic problems, attacks against PKI have focused on the single point of failure of certificate authority (CA). Although there are many reasons for a single point of failure, the purpose of the attack is to invalidate the CA. Thus a distributed authentication system is explored to provide a feasible solution to develop distributed PKI with the rise of the blockchain. Due to the automation and economic penalties of smart contracts, a PKI system is proposed based on smart contracts. The certificate chain was constructed in the blockchain, and a mechanism was adopted for auditing access to CA nodes in the blockchain. Experimental results show that security requirements of CA are met in this system.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Is This MITM Attack to Gmail’s SSL?(5). https://productforums.google.com/forum/#!msg/gmail/3J3r2JqFNTw/oHHZLJeed-HMJ. Accessed 20 Mar 2019
http://www.cnbeta.com/articles/tech/220690.htm. Accessed 20 Mar 2019
Ellison, C., Schneier, B.: Ten risks of PKI: What you’re not being told about public key infrastructure. Comput. Secur. J. 16(1), 1–7 (2000)
Nakamoto, S.: Bitcoin: a peer-to-peer electronic cash system. Consulted (2008)
A next-generation smart contract and decentralizedapplication platform (5) (2016). https://github.com/ethereum/wiki/wiki/WhitePaper/784a271b596e7fe4e047a2a585b733d631fcf1d4. Accessed 20 Mar 2019
Matsumoto, S., Reischuk, R.M.: IKP: turning a PKI around with decentralized automated incentives. In: 2017 IEEE Symposium on Security and Privacy (SP), pp. 410–426. IEEE (2017)
Corella, F.: Implementing a PKI on a Blockchain. Pomcor Research inMobile and Web Technology (5). https://pomcor.com/2016/10/25/implementing-a-pki-on-a-blockchain/. Accessed 20 Mar 2019
Fromknecht, C., Velicanu, D., Yakoubov, S.: A decentralized public key infrastructure with identity retention. IACR Cryptology ePrint Archive 2014/803 (2014)
Wikipedia: Namecoin (5). https://en.wikipedia.org/wiki/Namecoin. Accessed 20 Mar 2019
Al-Bassam, M.: SCPKI: a smart contract-based PKI and identity system. In: Proceedings of the ACM Workshop on Blockchain, Cryptocurrencies and Contracts, pp. 35–40. ACM (2017)
Garfinkel, S.: PGP: Pretty Good Privacy. O’Reilly & Associates, Newton (1995)
https://ethstats.net/. Accessed 20 Mar 2019
https://coinmarketcap.co. 20 Mar 2019
Orman, H.: Blockchain: the emperors new PKI? IEEE Internet Comput. 22(2), 23–28 (2018)
Jiang, W., Li, H., Xu, G., et al.: PTAS: Privacy-preserving Thin-client Authentication Scheme in Blockchain-Based PKI, Future Generation Computer Systems (2019). https://doi.org/10.1016/j.future.2019.01.026
Acknowledgements
This work is supported by the National Natural Science Foundations of China (grant No. 61802436 and No. 61702550) and the National Key Research and Development Plan (grant No. 2018YFB0803603 and No. 2016YFB0501901).
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2019 Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Li, S., Wang, N., Du, X., Liu, A. (2019). Internet Web Trust System Based on Smart Contract. In: Cheng, X., Jing, W., Song, X., Lu, Z. (eds) Data Science. ICPCSEE 2019. Communications in Computer and Information Science, vol 1058. Springer, Singapore. https://doi.org/10.1007/978-981-15-0118-0_23
Download citation
DOI: https://doi.org/10.1007/978-981-15-0118-0_23
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-15-0117-3
Online ISBN: 978-981-15-0118-0
eBook Packages: Computer ScienceComputer Science (R0)