ABSTRACT
Abstract: Public key infrastructure (PKI) has emerged as a critical technology for identity management in e-commerce and e-government and over a hundred certification authorities (CAs) across the globe offer certification services. Despite the passing of legislation in many countries to give equal legal weight to electronic and handwritten signatures, the overall market for digital certificates has not expanded as much as it was originally expected to. The literature indicates a range of possible issues that are holding back wide-scale adoption of PKI, ranging from technical to policy, legal, and regulatory hindrances. In this paper, we focus on the question of quality uncertainty, and hence on trust, and use an economic theory, the lemons principle, to examine the market context for digital certificates. A review follows of three ways-brand names, guarantees, and licensing-to signal the quality of certificates and so engender some of the trust that is required for the relying party to accept and use certificates when they are offered.
