Public-Key Infrastructure (PKI) is the cornerstone technology that facilitates secure information exchange over the Internet. However, PKI is exposed to risks due to potential failures of Certificate Authorities (CAs) that may be used to issue unauthorized certificates for end-users. Many recent breaches show that if a CA is compromised, the security of the corresponding end-users will be in risk.
As an emerging solution, Blockchain technology potentially resolves the problems of traditional PKI systems - in particular, elimination of single point-of-failure and rapid reaction to CAs shortcomings. Blockchain has the ability to store and manage digital certificates within a public and immutable ledger, resulting in a fully traceable history log.
We designed and developed a blockchain-based PKI management framework for issuing, validating and revoking X.509 certificates. Evaluation and experimental results confirm that the proposed framework provides more reliable and robust PKI systems with modest maintenance costs.
PKI: Proof-of-Concept of blockchain PKI implementation (Ethereum).
Web server (pki-web.go) - testing interface to interract with REST service. It allows to:
- Navigate within CA tree
- Generate testing X.509 cetrificates
- With REST service (pki-rest.go) it adds certificates to the CA's white lists and black lists stored in the blockchain, validates certificates, etc
REST API for Blockchain PKI (pki-rest.go):
A. ENROLL /enroll_user, all parameters in POST
Parameters:
- Hash or UplFiles (hash is a hex string without a leading "0x")
- UplFiles : uploaded certificate
- ParentAddr: the address of the CA smart contract where the certificate's hash is stored.This address of this contract should be called at user account CurrentUserAddr
- CurrentUserAddr: the ID (address) of the user who has the privilage to modify the parent smart contract. The key of this user should be available in key storage
Returns: 200 and "OK" in the html body in case of success
Errors (details are in html body):
- 480 : hash has the wrong length or hash is incorrect
- 481 : hash is already enrolled
- 482 : Certificate errors in case it was provided instead of hash
- 484 : ParentAddr is incorrect
- 485 : CurrentUserAddr is incorrect
- 580 : Ethereum execution error (out of gas and others)
- 581 : Ethereum connection error
- 500 : Other error
B. BLACKLIST /blacklist-user, all parameters are in POST
Puts certificate (either ordinary or CA) from the white list to the black list
Parameters:
- ParentAddr: the address of the CA smart contract where the certificate's hash is stored
- UserAddr: the ID (address) of the user who has the privilage to modify the smart contract. The key of this user should be available in key storage
- Deletion: array of strings with IDs of the items to be deleted in the user list. It is produced with checkbox HTML forms
Returns: 200 and "OK" in the html body in case of success
Errors (details are in html body):
- 484 : ParentAddr is incorrect
- 485 : Deletion is incorrect
- 580 : Ethereum executionn error (out of gas and others)
- 581 : Ethereum connection error
- 500 : Other error
C. CREATE CONTRACT /create_contract, all params as POST
Creation of the "empty" CA smart contract:
- CA certificate should be added to smart contract through population procedure
- the right to execute the smart contract should be changed to the CA account with population procedure as well
Params:
- ParentAddr: the address of the CA smart contract which is used for creation (it has the bin code). This address of this contract should be called at user account CurrentUserAddr
- NewUserAddr - owner is set to this address at the end of the proc. If empty, then new owner is not set. At the end of the population procedure only the NewUserAddr can modify the smart contract in the future
- CurrentUserAddr: - the user addr to connect to Ethereum. If empty, then set to root user addr
Returns: 200 and the smart contract address WITH heading "0x" in the html body in case of success
Errors (details are in html body):
- 480 : Current user does not have rights to execute the creation of the CA certificate
- 483 : NewUserAddr is incorrect
- 484 : ParentAddr is incorrect
- 485 : CurrentUserAddr is incorrect
- 580 : Ethereum execution error (out of gas and others)
- 581 : Ethereum connection error
- 500 : Other error
D. POPULATE /populate_contract, all parameters in POST
Population of the CA smart contract:
- putting a certificate into the contract referencing its parent, and
- setting ownership of the smartcontract to the user
Params:
- UplFiles : uploaded certificate
- NewUserAddr - owner is set to this address at the end of the proc. If empty, then new owner is not set. At the end of the population procedure only the NewUserAddr can modify the smart contract in the future
- CurrentUserAddr: - the user addr to connect to Ethereum. If empty, then set to root user addr
- ContrAddr: the address of the CA smart contract which should be populated. This address of this contract should be called at user account CurrentUserAddr
Returns: 200 and hash string WITHOUT heading "0x" in the html body in case of success
Errors (details are in html body):
- 482 : Certificate errors
- 483 : NewUserAddr is incorrect
- 484 : ContrAddr is incorrect
- 485 : CurrentUserAddr is incorrect
- 580 : Ethereum execution error (out of gas and others)
- 581 : Ethereum connection error
- 500 : Other error
E. DOWNLOADING OF CA CERTIFICATE FROM BLOCKCHAIN /download_cacert Extracting (download) of certificate from CA smart contract
Params:
- ContrAddr: the address of the CA smart contract
Returns: 200 and the smart contract address WITH heading "0x" in the html body in case of success
Errors (details are in html body):
- 484 : ContrAddr is incorrect
- 580 : Ethereum execution error (out of gas and others)
- 581 : Ethereum connection error
- 500 : Other error
F. CERTIFICATE VALIDATION /validate_cert, all params as POST
Parameters:
- Hash or UplFiles (hash is a hex string without a leading "0x")
- UplFiles : uploaded certificate
- ParentAddr: the address of the CA smart contract where the certificate's hash is stored. If certificate is uploaded through UplFiles, ParentAddr may not be specified
Returns: 200 and JSON with the validation results in the html body in case of success
Errors (details are in html body):
- 480 : hash has wrong length or hash is incorrect
- 482 : Certificate errors in case it was provided instead of hash
- 484 : ParentAddr is incorrect
- 580 : Ethereum execution error (out of gas and others)
- 581 : Ethereum connection error
- 500 : Other error
Validation result codes (used in smart contract validation, for instance):
- 0 - OK, the certificate is valid
- 1 - certificate not found
- 2 - certificate revoked
- 11 - error in parsing
- 12 - CA addr in the certificate does not correspond to _addrCA
- 13 - empty cert received for this CA
- 14 - empty addrCA parsed in this CA cert
- 15 - parent addr is null, but CA addr does not correspond to Root addr
- 16 - too many iterations: a certain limit (100?) is exceeded
SMART CONTRACT VERIFICATION:
- CheckCert(Hash, CurrentContract, Root Contract) – the verification itself
- DecodeReturnErr(returnCode_from_CheckCert) – the validation result code
- DecodeReturnIter(returnCode_from_CheckCert) – the level from leaf to the root (starting from 0) where the code should be applied. If certificate is valid the number of levels to the root from the leaf
Example:
verif = eth.contract({ABI}).at({VERIF_CONTR_ADDRESS})
// To get verification result (0 if valid): verif.DecodeReturnErr(verif.CheckCert("0x4c39a4efe6a1266bb4d479716fc0a674128c5437ba6ddafe63ba326307c430f9","0x27290fea2bf264b221ba1e97518650fcce1cf0d5","0x778d81a6563d3bd442b844849abde2959e8a0dc7"))
// To get level to the root at which the verification was not valid or number of iterations to the root if certificate is valid verif.DecodeReturnIter(verif.CheckCert("0x4c39a4efe6a1266bb4d479716fc0a674128c5437ba6ddafe63ba326307c430f9","0x27290fea2bf264b221ba1e97518650fcce1cf0d5","0x778d81a6563d3bd442b844849abde2959e8a0dc7"))
Installation:
A. Compile smart contracts
- cd ./scontract
- solc --bin pki_scont.sol > bin/pki_scont.bin
- solc --bin pki_scont_web.sol > bin/pki_scont_web.bin
- solc --bin pki_scont_valid.sol > bin/pki_scont_valid.bin
- solc --abi pki_scont.sol > abi/pki_abi.json
- solc --abi pki_scont_web.sol > abi/pki_abi_web.json
- solc --abi pki_scont_valid.sol > abi/pki_abi_valid.json
B. Deploy smart contracts to Ethereum (public or private)
C. Generate bindings for smart contracts in Golang
- cd ../
- abigen --abi ./scontract/abi/pki_abi.json --pkg main --type LuxUni_PKI --out bind_pki.go --bin ./scontract/bin/pki_scont.bin
- abigen --abi ./scontract/abi/pki_abi_web.json --pkg main --type LuxUni_PKI_web --out bind_pki_web.go
- abigen --abi ./scontract/abi/pki_abi_valid.json --pkg main --type LuxUni_PKI_valid --out bind_pki_valid.go
D. Compile REST service (pki-rest) and testing web server (pki-web)
- cd {go-ethereum dir}
- godep go build {current PKI dir}/pki-rest.go {current PKI dir}/bind_pki.go {current PKI dir}/pki_conf.go
- godep go build {current PKI dir}/pki-web.go {current PKI dir}/bind_pki.go {current PKI dir}/bind_pki_web.go {current PKI dir}/pki_conf.go
E. Configure pki-rest and pki-web, if needed (update of smart contract address, etc) By default, configuration file is ./config/pki-conf.json