Armored Core of PKI: Remove Signing Keys for CA via Physically Unclonable Function | allinfosecnews.com

April 25, 2024, 7:11 p.m. | Xiaolin Zhang, Chenghao Chen, Kailun Qin, Chi Zhang, Shipei Qu, Tengfei Wang, Yuxuan Wang, Dawu Gu

cs.CR updates on arXiv.org arxiv.org

arXiv:2404.15582v1 Announce Type: new
Abstract: The protection of CA's signing keys is one of the most crucial security concerns in PKI. However, these keys can still be exposed today by human errors or various carefully designed attacks. Traditional protections like TEE and HSM fail to eliminate this risk since they can be bypassed by skilled attackers. This dilemma motivates us to consider removing CA' signing keys and propose Armored Core, a PKI security extension applying the physically trusted binding provided …

arxiv attacks can cs.cr errors exposed fail function hsm human keys pki protection remove security security concerns signing today

More from arxiv.org / cs.CR updates on arXiv.org

Differentially private Bayesian tests 2 days, 5 hours ago | arxiv.org

arxiv confidential cornerstone cs.cr +16

On the Learnability of Watermarks for Language Models 2 days, 5 hours ago | arxiv.org

arxiv ask can cs.cl +12

Intriguing Properties of Diffusion Models: An Empirical Study of the Natural Attack Capability in Text-to-Image … 2 days, 5 hours ago | arxiv.org

applications arxiv attack cs.cr +14

On the Reliability of Watermarks for Large Language Models 2 days, 5 hours ago | arxiv.org

arxiv bots cs.cl cs.cr +23

A Watermark for Large Language Models 2 days, 5 hours ago | arxiv.org

arxiv can cs.cl cs.cr +13

Asymmetric Distributed Trust 2 days, 5 hours ago | arxiv.org

abstraction algorithms arxiv can +12

Read Disturbance in High Bandwidth Memory: A Detailed Experimental Study on HBM2 DRAM Chips 2 days, 5 hours ago | arxiv.org

arxiv bandwidth chips cs.ar +5

ABACuS: All-Bank Activation Counters for Scalable and Low Overhead RowHammer Mitigation 2 days, 5 hours ago | arxiv.org

access address area arxiv +17

A Case Study of Large Language Models (ChatGPT and CodeBERT) for Security-Oriented Code Analysis 2 days, 5 hours ago | arxiv.org

analysis arxiv can capabilities +17

Enterprise Security Architect

@ Proofpoint | Utah

View on infosec-jobs.com

Senior Incident Response and Digital Forensics Engineer

@ Danske Bank | Vilnius, Lithuania

View on infosec-jobs.com

SOC Analyst (Remote)

@ Bertelsmann | New York City, US, 10019

View on infosec-jobs.com

Risk Consulting - Protect Tech - Staff - IT Compliance - ISO-NIST-FISMA-PCI DSS and Privacy

@ EY | Bengaluru, KA, IN, 560016

View on infosec-jobs.com

Security Officer Warrenpoint Harbour

@ TSS | Newry, County Down, United Kingdom

View on infosec-jobs.com

Senior DevSecOps Engineer

@ Scientific Systems Company, Inc. | Burlington, Massachusetts, United States

View on infosec-jobs.com