LocalPKI: An Interoperable and IoT Friendly PKI

Abstract : A public-key infrastructure (PKI) binds public keys to identities of entities. Usually, this binding is established through a process of registration and issuance of certificates by a certificate authority (CA) where the validation of the registration is performed by a registration authority. In this paper, we propose an alternative scheme, called LOCALPKI, where the binding is performed by a local authority and the issuance is left to the end user or to the local authority. The role of a third entity is then to register this binding and to provide up-to-date status information on this registration. The idea is that many more local actors could then take the role of a local authority, thus allowing for an easier spread of public-key certificates in the population. Moreover, LOCALPKI represents also an appropriate solution to be deployed in the Internet of Things context. Our scheme's security is formally proven with the help of Tamarin, an automatic verification tool for cryptographic protocols.
Document type :
Book sections
Complete list of metadatas

Cited literature [31 references]  Display  Hide  Download

Contributor : Jean-Guillaume Dumas <>
Submitted on : Friday, December 21, 2018 - 11:36:18 AM
Last modification on : Thursday, July 4, 2019 - 10:10:57 AM
Long-term archiving on : Friday, March 22, 2019 - 3:50:31 PM


Files produced by the author(s)




Jean-Guillaume Dumas, Pascal Lafourcade, Francis Melemedjian, Jean-Baptiste Orfila, Pascal Thoniel. LocalPKI: An Interoperable and IoT Friendly PKI. E-Business and Telecommunications, 990, pp.224-252, 2019, Communications in Computer and Information Science. ICETE 2017, ⟨10.1007/978-3-030-11039-0_11⟩. ⟨hal-01963269⟩



Record views


Files downloads