Methods for efficient certificate revocation list compression
A method for providing efficient management of certificate revocation may comprise storing a list of identifiers of digital certificates including a revocation list defining a list of revoked certificates in an accumulator, storing a witness value in association with at least some entries in the revocation list in which the witness value provides proof of the membership or non-membership of an identifier in the revocation list, enabling generation of a new accumulator and a new witness value responsive to each insertion or deletion of an entry in the revocation list, and enabling batch updates to the revocation list using a reduced bit length value generated based on to a ratio of a value generated based on elements added to the revocation list to a value generated based on elements deleted from the revocation list. A corresponding apparatus is also provided. A method for certificate authorities (CA) that use Bloom filters for certificate revocation list (CRL) compression that enables the CA to hash only the entry that is to be un-revoked so that a good compression rate may be provided while avoiding computation of the entire CRL for each un-revocation.
46024065
Patent application filled the 5 November 2010
Alternative title(s) : (de) Verfahren und vorrichtung zur effizienten verwaltung von zertifikatannullierungen (fr) Procédé et appareil de fourniture d'une gestion efficace de révocation de certificats (en) Method and apparatus for providing efficient management of certificate revocation
Patent number | Country code | Kind code | Date issued |
EP2636233 | EP | A4 | 2017-06-14 |
US9083535 | US | B2 | 2015-07-14 |
US2013238897 | US | A1 | 2013-09-12 |
EP2636233 | EP | A1 | 2013-09-11 |
CN103190165 | CN | A | 2013-07-03 |
WO2012059794 | WO | A1 | 2012-05-10 |