ABSTRACT
In parallel to certificateless public-key cryptography (CL-PKC),two alternative solutions, named certificate-based public-key cryptosystem (CB-PKC) [31,55] and self-certified public-key cryptosystem (SC-PKC) [32,318], have been introduced to enjoy the good aspects of identity-based public-key cryptography (ID-PKC) and traditional public-key cryptography (PKC) together. To some extent, these solutions are structurally similar to CL-PKC. As for CB-PKC, the public and private key pair of the user is calculated by the user himself/herself and a corresponding certificate of his/her public key is requested from a trusted certificate authority (CA). On one hand, the certificate can guarantee the connection between the user and his/her public key as in traditional PKC. On the other hand, this certificate in CB-PKC acts as part of the user’s private key such that cryptographic operations such as signing or decrypting can only be performed by using the user’s private key and certificate together. Featuring implicit certification, CB-PKC revokes the need for third-party queries in traditional PKC, and thus simplifies the complex certificate management. Also, CB-PKC does not inherit the key escrow problem from ID-PKC since the private key is generated and kept by the user himself/herself.
