Date Added: Aug 2010
Public-key provision in on Internet scale is crucial for securing Peer-To-Peer (P2P) applications. This paper proposes a framework for a self-organizing and self-healing Certificate Authority (CA) in a Content Addressable Network (CAN) that can provide certificates without a centralized Trusted Third Party (TTP). In the authors' framework, a CA group is initialized by bootstrapping nodes and then grows to a mature state by itself. Based on their group management policies, the membership in the CA group is dynamic and has a uniform distribution over the P2P community. Meanwhile, the honest majority of the CA group is maintained by a Byzantine agreement algorithm, and all shares of the CA group are refreshed gradually and continuously.