Managing public key certificates revocation has long been a central issue in public key infrastructures. Though various certificate revocation mechanisms have been proposed to address this issue, little effort has been devoted to the empirical analysis of real-world certificate revocation data. In this paper, we conduct such an empirical analysis based on a large amount of data collected from VeriSign. Our study enables us to understand how long a revoked certificate lives and what the difference is in the lifetime of revoked certificates by certificate types, geographic locations, and organizations. Our study also provides a solid foundation for future research on optimal management of certificate revocation for different types of certificates requested from different organizations and located in different geographic locations. © 2008 Springer-Verlag Berlin Heidelberg.
CITATION STYLE
Walleck, D., Li, Y., & Xu, S. (2008). Empirical analysis of certificate revocation lists. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 5094 LNCS, pp. 159–174). https://doi.org/10.1007/978-3-540-70567-3_13
Mendeley helps you to discover research relevant for your work.