Secure and Privacy-Friendly Public Key Generation and Certification

Abstract: Digital societies increasingly rely on secure communication between parties. Certificate enrollment protocols are used by certificate authorities to issue public key certificates to clients. Key agreement protocols, such as Diffie-Hellman, are used to compute secret keys, using public keys as input, for establishing secure communication channels. Whenever the keys are generated by clients, the bootstrap process requires either (a) an out-of-band verification for certification of keys when those are generated by the clients themselves, or (b) a trusted server to generate both the public and secret parameters. This paper presents a novel constrained key agreement protocol, built upon a constrained Diffie-Hellman, which is used to generate a secure public-private key pair, and to set up a certification environment without disclosing the private keys. In this way, the servers can guarantee that the generated key parameters are safe, and the clients do not disclose any secret information to the servers.

Citation: F{\’a}bio Borges and Leonardo A. Martucci and Filipe Beato and and Max M{\”u}hlh{\”a}user (2014). Secure and Privacy-Friendly Public Key Generation and Certification. In Proceedings of the 13th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 24–26 September, Beijing, China, TrustCom 2014.


About P. Andreadis

Pre-Doctoral Research Assistant in AI and Social Computation @ University of Edinburgh.

Leave a Reply

Your email address will not be published. Required fields are marked *