A Proposal of Real-Time Status Management Protocol for Structural Desperation of a Certificate Verification Service

Abstract

We present the certificate status management protocol (CSMP). In the CSMP, a third service structure, referred to as the CSMS, which is solely responsible for certificate status information services, is adopted so as to solve the bottleneck problem, and disperse the verification service structure, which had been converged, by enabling the maintenance of real-time certificate status for any verifier demanding the certificate verification service. Its performance is compared by a simulation with the performance of the certificate revocation list (CRL) and the on-line certificate status protocol (OCSP), which maintains the real-time status of certificates from CA. The simulation results indicate that the CSMP is the most efficient protocol for use when compared with other alternative protocols analyzed.