Albert Levi and M. Ufuk Caglayan, "Analytical Performance Evaluation of Nested Certificates", Performance Evaluation,vol. 36-37, pp. 213 - 232, August 1999.

Abstract - The classical certificate systems are computationally inefficient, since they use signature operations based on public key cryptosystems. The nested certificates [5] are proposed to improve the performance of the certificate verification. A nested certificate is a certificate for another, say subject, certificate. The subject certificates can be classical or other nested certificates. A subject certificate can be verified without using the public key cryptosystem operations. In this way, the nested certificates improve the performances of the certificate and certificate path verification. In this paper, analytical formulations and graphical analyses of the computational performance improvement of the nested certificate usage are given for both single subject certificate verification and certificate path verification cases. Moreover, it is also shown that the usage of nested certificates always improves the computational performances of the verification of a single certificate and the verification of a certificate path.

Paper in PDF (181K)

Back to Albert Levi's home page
Back to M. Ufuk Caglayan's home page