Public key infrastructures are essential for Internet security, ensuring robust certificate management and revocation mechanisms. The transition from centralized to decentralized systems presents challenges such as trust distribution and privacy-preserving credential management. The transition from centralized to decentralized systems is motivated by addressing the single points of failure inherent in centralized systems and leveraging decentralized technologies' transparency and resilience. This paper explores the evolution of certificate status management from centralized to decentralized frameworks, focusing on blockchain technology and advanced cryptography. We provide a taxonomy of the challenges of centralized systems and discuss opportunities provided by existing decentralized technologies. Our findings reveal that, although blockchain technologies enhance security and trust distribution, they represent a bottleneck for parallel computation and face inefficiencies in cryptographic computations. For this reason, we propose a framework of decentralized technology components that addresses such shortcomings to advance the paradigm shift toward decentralized credential status management.

翻译：公钥基础设施对互联网安全至关重要，它确保了稳健的证书管理与吊销机制。从中心化系统向去中心化系统的转型带来了信任分布与隐私保护凭证管理等挑战。这一转型的动因在于解决中心化系统固有的单点故障问题，并利用去中心化技术的透明度与韧性。本文探讨了证书状态管理从中心化框架向去中心化框架的演进，重点关注区块链技术与先进密码学。我们对中心化系统的挑战进行了分类，并讨论了现有去中心化技术带来的机遇。研究发现，尽管区块链技术增强了安全性与信任分布，但其构成了并行计算的瓶颈，并在密码计算方面存在效率低下的问题。为此，我们提出了一个去中心化技术组件框架，旨在解决这些缺陷，以推动向去中心化凭证状态管理的范式转变。