Patch Integrity Verification Method Using Dual Electronic Signatures


JunHee Kim, Yoojae Won, Journal of Information Processing Systems Vol. 13, No. 6, pp. 1516-1526, Dec. 2017  

10.3745/JIPS.03.0084
Keywords: Digital signature, Electronic Signature, Integrity, Patch Distribution, Patch Management
Fulltext:

Abstract

Many organizations today use patch management systems to uniformly manage software vulnerabilities. However, the patch management system does not guarantee the integrity of the patch in the process of providing the patch to the client. In this paper, we propose a method to guarantee patch integrity through dual electronic signatures. The dual electronic signatures are performed by the primary distribution server with the first digital signature and the secondary distribution server with the second digital signature. The dual electronic signature ensures ensure that there is no forgery or falsification in the patch transmission process, so that the client can verify that the patch provided is a normal patch. The dual electronic signatures can enhance the security of the patch management system, providing a secure environment for clients.


Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from November 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.




Cite this article
[APA Style]
Kim, J. & Won, Y. (2017). Patch Integrity Verification Method Using Dual Electronic Signatures. Journal of Information Processing Systems, 13(6), 1516-1526. DOI: 10.3745/JIPS.03.0084.

[IEEE Style]
J. Kim and Y. Won, "Patch Integrity Verification Method Using Dual Electronic Signatures," Journal of Information Processing Systems, vol. 13, no. 6, pp. 1516-1526, 2017. DOI: 10.3745/JIPS.03.0084.

[ACM Style]
JunHee Kim and Yoojae Won. 2017. Patch Integrity Verification Method Using Dual Electronic Signatures. Journal of Information Processing Systems, 13, 6, (2017), 1516-1526. DOI: 10.3745/JIPS.03.0084.