Follow via:: RSS; Email Alert

pki

12 Results

Dictionary

PKI

(Public Key Infrastructure) A framework for creating a secure method for exchanging information based on public key cryptography. The foundation of a PKI is the certificate authority (CA), which...

Full Definition »

Dictionary

Definition: PKI

(Public Key Infrastructure) A framework for creating a secure method for exchanging information based on public key cryptography. The foundation of a PKI is the certificate authority (CA), which issues digital certificates that authenticate the identity of organizations and individuals over a public system such as the Internet. The certificates are also used to sign messages (see code signing), which ensures that messages have not been tampered with. For more on how certificates and public keys are used, see digital certificate.

Inhouse PKIs
A PKI can also be implemented by an enterprise for internal use to authenticate employees accessing the network. In this case, the enterprise is its own certificate authority (CA). For details on the public key system, see cryptography.

Managing the Root Key
The root key is the public/private key pair of the certificate authority. If the private part of that root key is ever discovered, all the certificates issued under that key pair are compromised. Creating and keeping the private key very private is critical.

All Encompassing
The PKI establishes the encryption algorithms, levels of security and distribution policy to users. The PKI embraces all the software (browsers, e-mail programs, etc.) used to support the process by examining and validating the certificates and signed messages. See digital certificate, digital signature, root key, web of trust and DST.

PKI

Generating the Root Key
SafeNet's Luna CA3 is a hardware security module (HSM) that is used to generate the root key in a PKI system and keep the private key secure. It uses a pin entry device (PED), EEPROM-based data keys and a PC Card reader that attaches to the server via an LVDS cable and PCI adapter. Containing a processor, firewall, flash memory and RAM, the PC Card is built with extra epoxy and secured with triple DES encryption. The card will destroy its contents if compromised.

The PED combines and transfers information from the data keys to the PC Card. The blue key is inserted into the PED by the security officer who sets up administrative rights, configures the HSM and determines how many people must use green keys. All parties must insert their green keys to activate the system. The black keys are used by administrators to generate and delete key pairs, and the red keys are used for grouping HSMs in domains. (Image courtesy of SafeNet, Inc., www.safenet-inc.com)

THIS DEFINITION IS FOR PERSONAL USE ONLY
All other reproduction is strictly prohibited without permission from the publisher.
© 1981-2010 The Computer Language Company Inc. All rights reserved.

Vendor HotSpot

The 360° Conversation around Cloud Computing

TECH VISUALIZER brings the social conversation to life... powered by Brocade

Learn More »

Additional Results

RSA: NSA Testing Motorola Android Smartphones for Top-Secret Calls

Who says Android is the most insecure mobile OS around? Not the National Security Agency, which is conducting a pilot of 100 Motorola smartphones running the Android OS that it says are already...

Blog posts | February 29, 2012 4:45pm PST
Signing contracts moves to the cloud

The history of online document signature is a perfect microcosm of how processes evolve digitally. The third generation is when innovation really takes hold.

Blog posts | July 19, 2011 2:37pm PDT
Can you trust your cloud hosting provider?

Now that the IT department is outsourced, all of a sudden people are asking the right questions about IT security.

News items | June 27, 2011 2:03pm PDT
Cool enterprise security developments at Macworld Expo

Several developers showed new security tools for the Mac and iPhone platform at this week's Macworld Expo in San Francisco, including biometric locks for storage and a forthcoming app that turns...

Blog posts | January 8, 2009 12:19pm PST
Call off the dogs--authentication solution already in enterprise-class PCs

The answer to many of our security problems could be found in chips that are used to store credentials and user certificates says Wave Systems CEO Steven Sprague.

News items | September 15, 2008 11:57am PDT
Security perimeter? What security perimeter?

In the fight against security breaches, PGP Chief Executive Phil Dunkelberger cautions that encryption by itself is not the answer.

News items | January 31, 2008 4:00am PST
Unbreakable: PKI is alive and kicking

Many organizations are starting to deploy certificates to secure critical pieces of business including e-mail, mobile access, and digital signaturs. The SaaS model is key factor for PKI comeback...

News items | January 10, 2008 11:36am PST
What's new in Vista Group Policy?

Vista offers 800 new Group Policy settings, some that pertain to added features and others that enhance control over features carried over from Windows XP. Deb Shinder offers a detailed look at...

Image galleries | May 16, 2007 12:30pm PDT