BlockPGP: A Blockchain-based Framework for PGP Key Servers

Yakubov, Alexander; Shbair, Wazen; State, Radu

Reference : BlockPGP: A Blockchain-based Framework for PGP Key Servers


	Document type :	Scientific congresses, symposiums and conference proceedings : Paper published in a book
	Discipline(s) :	Engineering, computing & technology : Computer science
	Focus Areas :	Security, Reliability and Trust
	To cite this reference:	http://hdl.handle.net/10993/37533

Title :	BlockPGP: A Blockchain-based Framework for PGP Key Servers
Language :	English
Author, co-author :	Yakubov, Alexander [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
	Shbair, Wazen [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
	State, Radu [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
Publication date :	28-Nov-2018
Edition :	November 27-30, 2018
Main document title :	The Sixth International Symposium on Computing and Networking
Publisher :	IEEE Xplore
Peer reviewed :	Yes
On invitation :	No
Audience :	International
City :	Hida Takayama
Country :	Japan
Event name :	The Sixth International Symposium on Computing and Networking
Event date :	from 27-11-2018 to 30-11-2018
Event place (city) :	Hida Takayama, , November 27-30, 2018
Event country :	Japan
Keywords :	[en] PGP ; Key Server ; Blockchain
Abstract :	[en] Pretty Good Privacy (PGP) is one of the most prominent cryptographic standards, offering end-to-end encryption for email messages and other sensitive information. PGP allows to verify the identity of the correspondent in information exchange as well as the information integrity. It implements asymmetric encryption with certificates shared through a network of PGP key servers. Many recent breaches show that certificate infrastructure can be compromised as well as exposed to operational errors. In this paper, we propose a new PGP management framework with the key server infrastructure implemented using blockchain technology. Our framework resolves some problems of PGP key servers focusing in particular on fast propagation of certificate revocation among key servers and elimination of man-in-the-middle risk. We also provided user access right control where only the certificate holder can change information related to the certificate. We designed and developed a prototype for key server deployment on permissioned Ethereum blockchain. Permissioned blockchain should allow to control the costs of PGP key server infrastructure maintenance at the present level.
Research centres :	Interdisciplinary Centre for Security, Reliability and Trust (SnT) > Services and Data management research group (SEDAN)
Target :	Researchers ; Professionals ; Students ; General public
Permalink :	http://hdl.handle.net/10993/37533

File(s) associated to this reference

Fulltext file(s):

	File	Commentary	Version	Size	Access
Open access	BlockPGP.pdf		Author preprint	162.54 kB	View/Open

All documents in ORBi^lu are protected by a user license.

University of Luxembourg Library | Feedback | Legal notices