AccuRevoke: Enhancing Certificate Revocation with Distributed Cryptographic Accumulators
Munshi Rejwan Ala Muid, Tijay Chung, Thang Hoang
IEEE Symposium on Security and Privacy 2025 · Day 1 · Keys and Passwords
The internet relies heavily on **TLS certificates** to establish trust and secure communication between clients and websites. When a website's private key is compromised, its certificate must be revoked to prevent malicious actors from impersonating the legitimate site. However, existing certificate revocation mechanisms suffer from significant drawbacks, including scalability issues, high bandwidth consumption, privacy concerns, and latency. "AccuRevoke: Enhancing Certificate Revocation with Distributed Cryptographic Accumulators" proposes a novel solution to these long-standing problems.