Public Key Infrastructure Security and Interoperability Testing and Evaluation
نویسندگان
چکیده
Public Key Infrastructures (PKIs) are currently being deployed in increasing sizes, numbers, fast changing technologies, and varying environments but our operational experience to date has been limited to a relatively small scale and small number of environments. Consequently, some open technical and environmental interoperability problems about the ways in which PKIs will be organized and operated in large-scale applications need to be addressed. For instance, (1) Non interoperable proprietary vendorprovided public key infrastructures (2) the distribution of revocation information which has serious security implications and the disadvantage to be very costly when running large scale PKI. This paper introduces the concept of security testing and evaluation to maximize PKI application security as a basis for PKI systems interoperability.
منابع مشابه
Security middleware for enhancing interoperability of Public Key Infrastructure
This paper describes a security middleware for enhancing the interoperability of public key infrastructure (PKI). Security is a key concern in e-commerce and is especially critical in cross-enterprise transactions. Public key cryptography is widely accepted as an important mechanism for addressing the security needs of e-commerce transactions because of its ability to implement nonrepudiation. ...
متن کاملProtecting Patient Privacy when Sharing Medical Data
This paper describes a national eHealth platform concept with a multi-level privacy protection in order to improve the security and privacy of medical information on their storage locations as well as during the exchanging/sharing processes. The key idea is to classify and split-up data into different servers. A Trusted Third Party server manages personal identifying data together with the rela...
متن کاملManaging Interoperability in Non-Hierarchical Public Key Infrastructures
This paper discusses considerations for certificate issuing systems and certificate processing applications, and directory systems in environments that employ nonhierarchical public key infrastructures (PKIs). The observations and recommendations here, while applicable to almost any non-hierarchical PKI, are most relevant to situations where the establishment of interoperability among the PKIs ...
متن کاملDesign and Implementation of LDAP Component Matching for Flexible and Secure Certificate Access in PKI
Lightweight Directory Access Protocol (LDAP) is the predominant Internet directory access protocol and hence so is its use in the Public Key Infrastructure (PKI). This paper presents the design and implementation of LDAP component matching which enhances flexibility and security of the LDAP directory service when it is used for the PKI certificate repositories. The component matching together w...
متن کاملInteroperable and Flexible Digital Signatures for E-Government and E-Commerce
The paper at hand presents the concept of a flexible and interoperable public key infrastructure, the so called FlexiPKI. We show how this concept and its realization enables long term security in e-government and e-commerce. As a proof of concept, we describe the implementation of the FlexiPKI concept at the root certification authority in Germany.
متن کامل