- What is a PKI? (RSA FAQ)
- Advances and Remaining Challenges to Adoption of Public Key Infrastructure Technology (United States General Accounting Office, 2001)
- PGP
-
OCSP
- OCSP (SearchSecurity definition)
- SDSI (Simple Distributed Security Infrastructure)
- ECC-DSA for SPKI (Nigel Smart)
- A Survey of Public-Key Infrastructures (Marc Branchaud, 1997)
![[Cool]](http://www.cs.ut.ee/~lipmaa/gifs/cool.gif){kind=small}
-
Anti-PKI papers
- Thirteen Reasons to Say 'No' to Public Key Cryptography (Thierry Moreau)
- Why Should We Look for Alternatives to the Public Key Infrastructure (PKI) Model? (Thierry Moreau)
- Ten Risks of PKI: What You're Not Being Told About Public Key Infrastructure (Carl Ellison and Bruce Schneier, 2000)
- Risks of PKI: Electronic Commerce
(Ellison, Schneier, Inside Risks 116, 2000)
- Risks of PKI: Electronic Commerce
-
Anti-CRL and efficiency Papers
- Fast Digital Identity Revocation (Aiello, Lodha, Ostrovsky)
- Can We Eliminate Revocation Lists? (Ronald L. Rivest)
- Efficient Certificate Revocation (Silvio Micali)
- Certificate Revocation and Certificate Update (Moni Naor, Kobbi Nissim)
- Quick Introduction to Certificate Revocation Trees (CRTs) (Paul Kocher)
- A Response to `Can We Eliminate Certificate Revocation Lists?' (Patrick McDaniel, Avi Rubin)
- Accountable Certificate Management Using Undeniable Attestations (Ahto Buldas, Peeter Laud, Helger Lipmaa, ACM CCS 2000)
- A Method for Fast Revocation of Public Key Certificates and Security Capabilities (D. Boneh, X. Ding, G. Tsudik, M. Wong, 2001)
- Asynchronous large-scale certification based on certificate verification trees (J. Domingo-Ferrer, M. Alba and F. Sebé, CMS 2001)
- Key Management Using Public Key Cryptography (10-11.02.2000)
- Certification Links (by Jan Willemson)
- Certificate Revocation (André Ĺrnes, 2000, MSc thesis)
- A Survey of Public-Key Infrastructures (Marc Branchaud, MSc Thesis)
- A Study on Certificates in PKI (Jaegwan Park, MSC Thesis)
- Stefan Brands' publications
- Off-line electronic cash based on secret-key certificates (Stefan Brands Brands, 1995)
- Restrictive blinding of secret-key certificates (Stefan Brands, 1995)
- Secret-key certificates (Stefan Brands, 1995)
- A note on parallel executions of restrictive blind issuing protocols for secret-key certificates (Stefan Brands, 1995)
- Restrictive blind issuing of secret-key certificates in parallel mode (Stefan Brands, 1995)
- More on restrictive blind issuing of secret-key certificates in parallel mode (Stefan Brands, 1995)
- Secret-key certificates (continued) (Stefan Brands, 1995)
- Proof of Possession (Slides by Carlislie Adams)
- Diffie-Hellman Proof-of-Possession Algorithms (RFC 2875)
- Managing Multiple and Dependable Identities (Ernesto Damiani, Sabrina De Capitani di Vimercati, and Pierangela Samarati, 2003)
- Tradeoffs in certificate revocation schemes (Peifang Zheng, 2003)
- PKI: It s Not Dead, Just Resting (Peter Gutmann, 2004)
- Trust but Verify: Accountability for Network Services (Aydan R. Yumerefendi and Jeffrey S. Chase, 2004)
- Flexible, Secure and Private Point-based Trust Management (Danfeng Yao, Keith B. Frikken, Mikhail J. Atallah, Roberto Tamassia)
-
Sweden
- SwUPKI (PKI for Universities and University Colleges in Sweden)
- Commercial
-
Open-source CA-s
- Jonah (PKIX freeware reference implementation)
- OpenCerts
- EJBCA (Java Certificate Authority)
- pyCA - X.509 CA
- OpenCA
- OpenCA labs
- Oscar - Open Secure Certificate Architechture (no longer developped)
- Libraries
- Secure Key Recovery for Archived and Communicated Data in the Corporate Intranet (E. Magkos, V. Chrissikopoulos, N. Alexandris, M. Poulos, 7th WSEAS Conference on Communications, 2003)
- Scalable and Efficient PKI for Inter-Organizational Communication (Ansper, Buldas, Freudenthal, Willemson, 2003)
- Trust but Verify: Accountability for Network Services (Aydan R. Yumerefendi and Jeffrey S. Chase, 2004)
![[citeseer]](http://citeseer.ist.psu.edu/icon/cssmall.gif){kind=icon}
gmail.com