all InfoSec news
Trustchain -- Trustworthy Decentralised Public Key Infrastructure for Digital Credentials. (arXiv:2305.08533v2 [cs.CR] UPDATED)
cs.CR updates on arXiv.org arxiv.org
The sharing of public key information is central to the digital credential
security model, but the existing Web PKI with its opaque Certification
Authorities and synthetic attestations serves a very different purpose. We
propose a new approach to decentralised public key infrastructure, designed for
digital identity, in which connections between legal entities that are
represented digitally correspond to genuine, pre-existing relationships between
recognisable institutions. In this scenario, users can judge for themselves the
level of trust they are willing to …
certification credential credentials digital identity information infrastructure key opaque pki public public key purpose security sharing synthetic web