IDEAS home Printed from https://ideas.repec.org/a/gam/jftint/v14y2022i11p336-d976925.html
   My bibliography  Save this article

Comparison of Distributed Tamper-Proof Storage Methods for Public Key Infrastructures

Author

Listed:
  • Fabian Honecker

    (Faculty for Engineering and Computer Sciences, University of Applied Sciences, 49076 Osnabrück, Germany)

  • Julian Dreyer

    (Faculty for Engineering and Computer Sciences, University of Applied Sciences, 49076 Osnabrück, Germany)

  • Ralf Tönjes

    (Faculty for Engineering and Computer Sciences, University of Applied Sciences, 49076 Osnabrück, Germany)

Abstract

Modern Public Key Infrastructures (PKIs) allow users to create and maintain centrally stored cryptographic certificates. These infrastructures use a so-called certificate chain. At the root of the chain, a root Certification Authority (CA) is responsible for issuing the base certificate. Every verification and certification step within the chain is based upon the security of said root CA. Thus, its operation security is of great concern. Since the root certificates are stored locally on the root CA, any Denial of Service (DoS) attack may render the whole certificate chain, which is based on of the attacked root CA, inoperable. Therefore, this article evaluates different approaches to a decentralized data storage system that is based on the Distributed Ledger Technology (DLT). To show the real-world potential of the proposed approaches, we also evaluate the different technologies using a novel PKI mechanism called Near Field Communication Key Exchange (NFC-KE). The results indicate that modern distributed data storage solutions such as Interplanetary Filesystem (IPFS) and SIA can have significant performance and decentralization benefits in comparison to purely Blockchain-based technologies like Hyperledger Fabric. However, they lack any Smart Contract functionality, which requires a software developer to implement verification mechanisms in centralized software solutions.

Suggested Citation

  • Fabian Honecker & Julian Dreyer & Ralf Tönjes, 2022. "Comparison of Distributed Tamper-Proof Storage Methods for Public Key Infrastructures," Future Internet, MDPI, vol. 14(11), pages 1-18, November.
  • Handle: RePEc:gam:jftint:v:14:y:2022:i:11:p:336-:d:976925
    as

    Download full text from publisher

    File URL: https://www.mdpi.com/1999-5903/14/11/336/pdf
    Download Restriction: no

    File URL: https://www.mdpi.com/1999-5903/14/11/336/
    Download Restriction: no
    ---><---

    Citations

    Citations are extracted by the CitEc Project, subscribe to its RSS feed for this item.
    as


    Cited by:

    1. Christoph Stach & Clémentine Gritti, 2023. "Special Issue on Security and Privacy in Blockchains and the IoT Volume II," Future Internet, MDPI, vol. 15(8), pages 1-7, August.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jftint:v:14:y:2022:i:11:p:336-:d:976925. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    We have no bibliographic references for this item. You can help adding them by using this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.