PkBlock

PkBlock is a data structure and protocol designed for organizing and validating public-key information within block-oriented logs. It provides a compact, tamper-evident container for batches of public-key records, enabling efficient verification of key material and its associated certificates.

Typically, a PkBlock consists of a header and a list of records. The header may include a

PkBlock supports two common modes of verification. In a straightforward mode, verifiers check that each record’s

Applications for PkBlock include certificate transparency-like systems, distributed identity management, and large-scale PKI auditing in organizations

Security considerations center on proper key management, trust anchor policies, and protection of block integrity against