A new modified bridge certification authority PKI trust model

Current trust structures suffer from a scaling problem, and some may have security problems. Even given the topological simplification of bridge Certification Authorities, as cross certificate meshes grow in size and complexity, the number of possible routes between domains increases very quickly, and the time required for path building can increase beyond a tolerable delay for real-time operation. This paper proposes a new modified bridge CA (BCA). In certification path process, the new BCA is trivial complexity than original one, but more efficient than unstructured mesh trust model. And it also owns some other features. Such as more security, less expensive cost based on existing PKI trust model and some etc. For improving the performance of certification path process of the new model, we suggest an independent mechanism to automatically discovery and verb these certificate paths among these domains.