You can view the full text of this article for free using the link below.

Title: Decentralised domain authentication

Authors: Shehyaaz Khan Nayazi; Mohammed Sufiyan Aman; Shakshi Pandey; Riyanchhi Agrawal; M. Namratha

Addresses: BMS College of Engineering, Bull Temple Rd., Basavanagudi, Bengaluru, Karnataka 560019, India ' BMS College of Engineering, Bull Temple Rd., Basavanagudi, Bengaluru, Karnataka 560019, India ' BMS College of Engineering, Bull Temple Rd., Basavanagudi, Bengaluru, Karnataka 560019, India ' BMS College of Engineering, Bull Temple Rd., Basavanagudi, Bengaluru, Karnataka 560019, India ' BMS College of Engineering, Bull Temple Rd., Basavanagudi, Bengaluru, Karnataka 560019, India

Abstract: Transport layer security protocols ensure secure and encrypted communications on the internet. The security of TLS protocols relies on properly validating digital certificates containing the public keys of domains during the handshake authentication. These certificates are issued by certificate authorities (CAs). However, mis-issued certificates have been used to attack users. To monitor CA behaviour, certificate transparency (CT) and a decentralised system, instant karma public key infrastructure (IKP) were proposed, however, they do not tackle domain misbehaviour. Based on CT and IKP, a decentralised system is proposed using the Ethereum framework to handle the misbehaviour of domains and enhance the security of TLS. The proposed system utilises CT logs to detect and respond to domain misbehaviour.

Keywords: certificate transparency; online certificate transparency protocol; OCSP; signed certificate timestamp; SCT; blockchain; smart contract; transport layer security; instant karma PKI; IKP; decentralised domain authentication.

DOI: 10.1504/IJBC.2022.122987

International Journal of Blockchains and Cryptocurrencies, 2022 Vol.3 No.1, pp.24 - 40

Received: 22 Jul 2021
Accepted: 05 Dec 2021

Published online: 19 May 2022 *

Full-text access for editors Full-text access for subscribers Free access Comment on this article