Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Blockchain-based PKI within a Corporate Organization: Advantages and Challenges

Julian Springer, Philipp Haindl

TL;DR

The paper addresses the problem of centralized trust in traditional PKIs by evaluating the potential of blockchain-based PKIs within a corporate group. It benchmarks classic, blockchain, and hybrid cryptographic approaches, surveys current blockchain PKI implementations, and analyzes regulatory implications under the Cyber Resilience Act and NIS-2. Key contributions include a cryptography primer, a framework for evaluating blockchain PKIs (including features, platform, and storage considerations), and guidance on regulatory compliance and practical deployment. The findings suggest blockchain PKIs can decentralize trust, enhance immutability, and improve certificate monitoring and misconduct handling, but require careful selection of ledger technology and alignment with legal requirements. Overall, the work offers a structured reference for practitioners considering blockchain PKI adoption and identifies areas for standards development and integration with existing IT infrastructures.

Abstract

This research investigates the potential use of a blockchain-based Public Key Infrastructure (PKI) within an organization and compares it to conventional PKI systems. The goal is to assess the advantages and disadvantages of both approaches in order to determine the feasibility of employing blockchain technology for a decentralized PKI. The study will also evaluate the impact of current legal frameworks, such as the Cyber Resilience Act (CRA) and NIS-2 Directive. The study will examine various implementations of blockchain PKIs based on factors such as security, performance, and platform. The results indicate that blockchain-based PKIs can overcome the limitations of conventional PKIs by decentralizing the trust anchor, providing greater security. Blockchain technology allows for the immutable and transparent management of certificates, making tampering significantly more challenging. Additionally, blockchain-based PKIs offer enhanced mechanisms for identifying and addressing certificate misconduct.

Blockchain-based PKI within a Corporate Organization: Advantages and Challenges

TL;DR

The paper addresses the problem of centralized trust in traditional PKIs by evaluating the potential of blockchain-based PKIs within a corporate group. It benchmarks classic, blockchain, and hybrid cryptographic approaches, surveys current blockchain PKI implementations, and analyzes regulatory implications under the Cyber Resilience Act and NIS-2. Key contributions include a cryptography primer, a framework for evaluating blockchain PKIs (including features, platform, and storage considerations), and guidance on regulatory compliance and practical deployment. The findings suggest blockchain PKIs can decentralize trust, enhance immutability, and improve certificate monitoring and misconduct handling, but require careful selection of ledger technology and alignment with legal requirements. Overall, the work offers a structured reference for practitioners considering blockchain PKI adoption and identifies areas for standards development and integration with existing IT infrastructures.

Abstract

This research investigates the potential use of a blockchain-based Public Key Infrastructure (PKI) within an organization and compares it to conventional PKI systems. The goal is to assess the advantages and disadvantages of both approaches in order to determine the feasibility of employing blockchain technology for a decentralized PKI. The study will also evaluate the impact of current legal frameworks, such as the Cyber Resilience Act (CRA) and NIS-2 Directive. The study will examine various implementations of blockchain PKIs based on factors such as security, performance, and platform. The results indicate that blockchain-based PKIs can overcome the limitations of conventional PKIs by decentralizing the trust anchor, providing greater security. Blockchain technology allows for the immutable and transparent management of certificates, making tampering significantly more challenging. Additionally, blockchain-based PKIs offer enhanced mechanisms for identifying and addressing certificate misconduct.
Paper Structure (21 sections, 1 table)

This paper contains 21 sections, 1 table.

Table of Contents

  1. Objective
  2. Research Questions
  3. Cryptography Fundamentals
  4. Symmetric Cryptography
  5. Asymmetric Cryptography
  6. Hybrid Cryptography
  7. Digital signature
  8. Functional requirements
  9. Technical requirements
  10. Legal Requirements
  11. Introduction to Public Key Infrastructure
  12. Definition and Significance
  13. Digital certificates
  14. Blockchain and Distributed Ledger
  15. Distributed Ledger
  16. ...and 6 more sections