A Decentralized Dynamic PKI based on Blockchain

Research output: Chapter in Book/Report/Conference proceedingPaper in conference proceeding


The central role of the certificate authority (CA) in traditional public key infrastructure (PKI) makes it fragile and prone to compromises and operational failures. Maintaining CAs and revocation lists is demanding especially in loosely-connected and large systems. Log-based PKIs have been proposed as a remedy but they do not solve the problem effectively. We provide a general model and a solution for decentralized and dynamic PKI based on a blockchain and web of trust model where the traditional CA and digital certificates are removed and instead, everything is registered on the blockchain. Registration, revocation, and update of public keys are based on a consensus mechanism between a certain number of entities that are already part of the system. Any node which is part of the system can be an auditor and initiate the revocation procedure once it finds out malicious activities. Revocation lists are no longer required as any node can efficiently verify the public keys through witnesses.


Research areas and keywords

Subject classification (UKÄ) – MANDATORY

  • Information Systems
Original languageEnglish
Title of host publicationProceedings of the 36th ACM/SIGAPP Symposium On Applied Computing (SAC'21)
PublisherAssociation for Computing Machinery (ACM)
Number of pages10
ISBN (Electronic)978-1-4503-8104-8/21/03
Publication statusAccepted/In press - 2021 Mar 22
Publication categoryResearch
EventThe 36th ACM/SIGAPP Symposium on Applied Computing, SAC '21 - Virtual Event, Korea, Republic of
Duration: 2021 Mar 222021 Mar 26


ConferenceThe 36th ACM/SIGAPP Symposium on Applied Computing, SAC '21
CountryKorea, Republic of
CityVirtual Event

Total downloads

No data available