Definition of PKI
What is PKI?
PKI is an arrangement which provides for third-party vetting of, and vouching for, user identities. It also allows binding of public keys to users.
|
|
PKI
|
|
PKI Policy
This PKI Note provides general information about PKI policy, the role that policy plays in a PKI and how that policy applies to both traditional and PKI-enabled business environments. It also addresses the documentation required to support a PKI policy, what is specified in a PKI policy, how a PKI policy can be managed, and outlines some high level issues regarding PKI policy.
Read the Article
|
Common issues in PKI implementations
This paper is an attempt to go beyond the many conceptual papers published about Public Key Infrastructure (PKI) and look at the actual problems experienced when implementing it. In particular, it looks at issues connected with the design and roll- out of large scale, identity PKIs. The issues chosen and the examples used have been sourced from real-life experience, as well as from public records of two current large-scale implementations of Identity cards incorporating PKI: The Common Access Card currently being rolled out to United States Department of Defense staff and the Estonian ID card.
Read the Article
|
The Risks Involved With Open and Closed Public Key Infrastructure
Over the past couple of decades, on-line communication, especially electronic mail and on-line shopping, has changed the way that people transfer sensitive information to and from each other. As long as these methods of communication will be used, there needs to be a way to keep this information secure. One solution to help us solve this problem is Public Key Infrastructure (PKI). There are two types of PKI models: open and closed. Each one has its advantages, but there is a certain level of risk and liability involved with each model. This paper will provide a basic overview of PKI and its components. It will then discuss the advantages and disadvantages of both the open and closed PKI models. Finally, this paper will present some of the risks and liability issues involved with PKI. In particular, it will discuss the enormous risks behind the open PKI model and why it never flourished in the marketplace.
Read the Article
|
No Single Killer App for PKI
This paper covers the well known security functions enabled by PKI, more attention, however is focused on business and technology issues associated with PKI implementations. Talk about Public Key Infrastructure (PKI), the technology behind digital certificates, and opinions start flying. While there have been a number of successful implementations over the past five years, many evaluators still see PKI as a technology poised at the starting gate. As with most research papers on the subject, this one covers the wellknown security functions enabled by PKI. More attention, however, is focused on business and technology issues associated with PKI implementations.
Read the Article
|
PKI, The What, The Why, and The How
The purpose of this paper is to describe what Public Key Architecture (PKI) is, and how it can help organizations and individuals during the enactment of electronic transactions. I want to title this paper as the "PKI, The good, the bad and the ugly" even though it might attract the curious it was a little too off beat to qualify (even with my sense of humor) as a good title.
Read the Article
|
A vulnerability assessment of roaming soft certificate PKI solutions
In the past two or three years most major PKI technology vendors have released products which allow digital certificate holders with "soft certificates" to have their private keys stored at a central server and uploaded when needed to their local machine. This allows users to "roam" from one machine to another without having to manually manage the export and import of their keys onto temporary media like diskettes. Thus users gain much of the portability and usability advantages of hardware key media like smartcards and USB dongles but without the associated cost. This paper highlights the security engineering and deployment considerations by presenting a systematic vulnerability assessment of the common roaming architecture.
Read the Article
|
Decommissioning Certification Authorities
This paper outlines the process of terminating a certificate authority, this requires planning several physical, logical and human aspects. Security of information and reputation is at risk. The current and future needs of subscribers and other relying parties require consideration.
Read the Article
|
Strong Authentication and Authorization model Using PKI, PMI, and Directory
Since Internet has been used commonly in information systems technologies, many applications need some security capabilities to protect against threats to the communication of information. Two critical procedures of these capabilities are authenticati on and authorization. This report presents a strong authentication and authorization model using three standard frameworks. They are PKI, PMI, and Directory. Both PKI and PMI are described in X.509 st andard 4th edition. PKI provides a framework to verify the identities of each entities of given domain. The framework includes the requesting, issuing, signing, and validating of the public-key certificates.
Read the Article
|
PKI and Information Security Awareness: Opportunity and Obligation
Frequently discussed challenges to successful PKI deployments include integration with internal business processes and legacy systems, automation of processes that extend beyond the firewall to business partners, and user acceptance. In this paper we explore the latter: "In the final analysis, the single most difficult criterion for a successful PKI rollout is user acceptance." (Johnson & Manusco, March 27, 2001)
Read the Article
|
Integrate HMAC Capable Token into User Authentication Mechanism and Public Key Infrastructure
This article describes using a HMAC capable token in user authentication or public key infrastructure (PKI) to derive user private key or produce message digest for digital signature scheme. The unique hardware token will be linked together with the user password cryptographically to provide a more secure/stronger solution.
Read the Article
|
|
|
Page: 1 2
Members currently browsing this category:
|
|
