What is it about?
This paper addresses the ongoing challenge of balancing privacy with security in Public Key Infrastructure (PKI) systems, which are essential for securing online communication. While PKI provides crucial security features like authenticity, integrity, and non-repudiation, it can compromise user privacy due to its traceability, especially when identity-based certificates are used. The proposed solution introduces a blockchain-based, privacy-aware PKI system that maintains the same level of security as traditional PKI systems but with enhanced privacy. The system uses two types of elliptic curve cryptography (ECC) keys: identity-based long-term certified keys and temporary, anonymous keys (pseudonyms). These pseudonyms are stored on the blockchain, ensuring both security and privacy for users while allowing for traceability when necessary.
Featured Image
Photo by Matt Artz on Unsplash
Why is it important?
In the digital age, PKI is foundational for securing online transactions, communications, and identities. However, the traceability inherent in PKI systems, especially with identity-based certificates, can expose sensitive user information, undermining privacy. The blockchain-based solution proposed in this paper addresses this critical issue by allowing users to maintain their privacy while still benefiting from PKI's security features. This approach offers a significant step forward in ensuring that users can engage in secure online activities without fear of compromising their personal privacy, which is essential in maintaining trust in digital systems.
Perspectives
The integration of blockchain technology with PKI could redefine how we approach security and privacy in the digital realm. As privacy concerns continue to grow, this solution paves the way for more secure and private online interactions, not only for personal communication but also in areas such as e-commerce, healthcare, and government services. By ensuring that users can maintain their privacy while also guaranteeing security, this research sets the stage for future developments in privacy-preserving technologies that could be adopted in a wide variety of applications. The proposed PKI system could be a game-changer, offering a new standard for secure and private digital identities.
Leila BENAROUS
University of Laghouat
Read the Original
This page is a summary of: The quest of privacy in public key infrastructure, International Journal of Blockchains and Cryptocurrencies, January 2021, Inderscience Publishers,
DOI: 10.1504/ijbc.2021.119886.
You can read the full text:
Contributors
The following have contributed to this page
