Visible to the public Certificate Transparency Using Blockchain

TitleCertificate Transparency Using Blockchain
Publication TypeConference Paper
Year of Publication2018
AuthorsMadala, D S V, Jhanwar, Mahabir Prasad, Chattopadhyay, Anupam
Conference Name2018 IEEE International Conference on Data Mining Workshops (ICDMW)
ISBN Number978-1-5386-9288-2
Keywordsauthorisation, blockchain, Browsers, certificate authorities, certificate revocation mechanism, certificate transparency, certificate validation process, certification, certification authorities, Computed tomography, Google, Human Behavior, hyperledger, IBM Hyperledger Fabric blockchain platform, Metrics, PKI, Protocols, pubcrawl, Public key, public key cryptography, public keys, public logs, resilience, Resiliency, safe distributions, Scalability, Servers, SSL Trust Models, SSL-TLS protocols, telecommunication security, web communication, web domains

The security of web communication via the SSL/TLS protocols relies on safe distributions of public keys associated with web domains in the form of X.509 certificates. Certificate authorities (CAs) are trusted third parties that issue these certificates. However, the CA ecosystem is fragile and prone to compromises. Starting with Google's Certificate Transparency project, a number of research works have recently looked at adding transparency for better CA accountability, effectively through public logs of all certificates issued by certification authorities, to augment the current X.509 certificate validation process into SSL/TLS. In this paper, leveraging recent progress in blockchain technology, we propose a novel system, called CTB, that makes it impossible for a CA to issue a certificate for a domain without obtaining consent from the domain owner. We further make progress to equip CTB with certificate revocation mechanism. We implement CTB using IBM's Hyperledger Fabric blockchain platform. CTB's smart contract, written in Go, is provided for complete reference.

Citation Keymadala_certificate_2018