ARPKI: Attack Resilient Public-Key Infrastructure

We present ARPKI, a public-key infrastructure that ensures that certificate-related operations, such as certificate issuance, update, revocation, and validation, are transparent and accountable. ARPKI is the first such infrastructure that systematically takes into account requirements identified by previous research. Moreover, ARPKI is co-designed with a formal model, and we verify its core security property using the Tamarin prover. We present a proof-of-concept implementation providing all features required for deployment. ARPKI efficiently handles the certification process with low overhead and without incurring additional latency to TLS.

ARPKI offers extremely strong security guarantees, where compromising n-1 trusted signing and verifying entities is insufficient to launch an impersonation attack. Moreover, it deters misbehavior as all its operations are publicly visible.


by Basin, David, Cremers, Cas, Kim, Tiffany Hyun-Jin, Perrig, Adrian, Sasse, Ralf and Szalachowski, Pawel
Reference:
ARPKI: Attack Resilient Public-Key Infrastructure. Basin, David, Cremers, Cas, Kim, Tiffany Hyun-Jin, Perrig, Adrian, Sasse, Ralf and Szalachowski, Pawel. In Proceedings of the ACM Conference on Computer and Communications Security (CCS) 2014. Research Area: Public Key Infrastructures
Bibtex Entry:
@inproceedings{Basin:2014:AAR:2660267.2660298,
    author = {Basin, David and Cremers, Cas and Kim, Tiffany Hyun-Jin and Perrig, Adrian and Sasse, Ralf and Szalachowski, Pawel},
    title = {ARPKI: Attack Resilient Public-Key Infrastructure},
    booktitle = {Proceedings of the ACM Conference on Computer and Communications Security (CCS)},
    month = {November},
    year = {2014},
    isbn = {978-1-4503-2957-6},
    location = {Scottsdale, Arizona, USA},
    pages = {382--393},
    url = {/publications/papers/ccsfp200s-cremersA.pdf},
    doi = {10.1145/2660267.2660298},
    keywords = {pki, attack resilience, certificate validation, formal validation, public log servers, public-key infrastructure, tls},
}

Formal model and implementation: download.