Generalized certificate revocation

Carl A. Gunter; Trevor Jim

doi:10.1145/325694.325736

Generalized certificate revocation

Carl A. Gunter
, Trevor Jim

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

We introduce a language for creating and manipulating certificates, that is, digitally signed data based on public key cryptography, and a system for revoking certificates. Our approach provides a uniform mechanism for secure distribution of pubic key bindings, authorizations, and revocation information. An external language for the description of these and other forms of data is compiled into an intermediate language with a well-defined denotational and operational semantics. The internal language is used to carry out consistency checks for security, and optimizations for efficiency. Our primary contribution is a technique for treating revocation data dually to other sorts of information using a polarity discipline in the intermediate language.

Original language	English (US)
Title of host publication	POPL '00
Subtitle of host publication	Proceedings of the 27th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Publisher	Association for Computing Machinery
Pages	316-329
Number of pages	14
ISBN (Print)	978-1-58113-125-3
DOIs	https://doi.org/10.1145/325694.325736
State	Published - 2000
Externally published	Yes
Event	POPL'00 - The 27th ACM SIGPLAN-SIGACT Symposium on Principles og Programming Languages - Boston, MA, USA Duration: Jan 19 2000 → Jan 21 2000

Conference

Conference	POPL'00 - The 27th ACM SIGPLAN-SIGACT Symposium on Principles og Programming Languages
City	Boston, MA, USA
Period	1/19/00 → 1/21/00

ASJC Scopus subject areas

Software

Online availability

10.1145/325694.325736

Library availability

Discover UIUC Full Text

Cite this

@inproceedings{7a240e2b1e544c07a933d4b7b941bc3b,

title = "Generalized certificate revocation",

abstract = "We introduce a language for creating and manipulating certificates, that is, digitally signed data based on public key cryptography, and a system for revoking certificates. Our approach provides a uniform mechanism for secure distribution of pubic key bindings, authorizations, and revocation information. An external language for the description of these and other forms of data is compiled into an intermediate language with a well-defined denotational and operational semantics. The internal language is used to carry out consistency checks for security, and optimizations for efficiency. Our primary contribution is a technique for treating revocation data dually to other sorts of information using a polarity discipline in the intermediate language.",

author = "Gunter, \{Carl A.\} and Trevor Jim",

year = "2000",

doi = "10.1145/325694.325736",

language = "English (US)",

isbn = "978-1-58113-125-3",

pages = "316--329",

booktitle = "POPL '00",

publisher = "Association for Computing Machinery",

address = "United States",

note = "POPL'00 - The 27th ACM SIGPLAN-SIGACT Symposium on Principles og Programming Languages ; Conference date: 19-01-2000 Through 21-01-2000",

}

TY - GEN

T1 - Generalized certificate revocation

AU - Gunter, Carl A.

AU - Jim, Trevor

PY - 2000

Y1 - 2000

N2 - We introduce a language for creating and manipulating certificates, that is, digitally signed data based on public key cryptography, and a system for revoking certificates. Our approach provides a uniform mechanism for secure distribution of pubic key bindings, authorizations, and revocation information. An external language for the description of these and other forms of data is compiled into an intermediate language with a well-defined denotational and operational semantics. The internal language is used to carry out consistency checks for security, and optimizations for efficiency. Our primary contribution is a technique for treating revocation data dually to other sorts of information using a polarity discipline in the intermediate language.

AB - We introduce a language for creating and manipulating certificates, that is, digitally signed data based on public key cryptography, and a system for revoking certificates. Our approach provides a uniform mechanism for secure distribution of pubic key bindings, authorizations, and revocation information. An external language for the description of these and other forms of data is compiled into an intermediate language with a well-defined denotational and operational semantics. The internal language is used to carry out consistency checks for security, and optimizations for efficiency. Our primary contribution is a technique for treating revocation data dually to other sorts of information using a polarity discipline in the intermediate language.

UR - https://www.scopus.com/pages/publications/0033716998

UR - https://www.scopus.com/pages/publications/0033716998#tab=citedBy

U2 - 10.1145/325694.325736

DO - 10.1145/325694.325736

M3 - Conference contribution

AN - SCOPUS:0033716998

SN - 978-1-58113-125-3

SP - 316

EP - 329

BT - POPL '00

PB - Association for Computing Machinery

T2 - POPL'00 - The 27th ACM SIGPLAN-SIGACT Symposium on Principles og Programming Languages

Y2 - 19 January 2000 through 21 January 2000

ER -

Generalized certificate revocation

Abstract

Conference

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this