Upload
riva
View
42
Download
0
Tags:
Embed Size (px)
DESCRIPTION
Public Key Infrastructure in EBusiness. By Umair Ali. Introduction. PKI - a security architecture – over the internet. Provides an increased level of confidence for exchanging information. architecture addresses confidentiality, integrity, non-repudiation and authorization of data. - PowerPoint PPT Presentation
Citation preview
Public Key Infrastructurein
EBusiness
ByUmair Ali
Dec 2004Version 1
-PKI - a security architecture – over the internet.
-Provides an increased level of confidence for exchanging information.
- architecture addresses confidentiality, integrity, non-repudiation and
authorization of data.
-Supports the distribution, management, expiration, rollover, backup,
revoking of public and private keys
Introduction
Dec 2004Version 1
Components of PKI
• The End-Entities (EE) – end user or an application.
• The Certificate Authority (CA) – third party assigns certificates
• The Certificate Repository (CR) - stores certificates that are issued and also revoked certificates
• The Registration Authority (RA) – optional component
• Digital Certificates (X.509 V3) -
Dec 2004Version 1
Implementation steps
– Gather information
– Make decision
– Choose PKI vendors
– Prepare infrastructure
– Implement PKI
Dec 2004Version 1
• also known as multi vendor interoperability – where different technologies from different vendors are used by different clients including different applications.
• Interoperability helps to support transactions between different parties that use different technology supplied by the different vendors
PKI interoperability
Dec 2004Version 1
- Different policies for issued certificates
- Different features in PKI applications
- Different certificate storage and retrieval standards
- Different X.509 extensions
- Different obligations on certificate subjects
- Different PKI knowledge among organizational staff
PKI interoperability - Issues
Dec 2004Version 1
• Hierarchical model
• Peer to Peer model also known as Mesh Model
• Bridge Model
Interoperability Model
Dec 2004Version 1
Hierarchical Model
http://www.galexia.com/public/research/assets/pki_interoperability_models_2005/pki_interoperability_models_2005-4_1_.html
Dec 2004Version 1
Cross-Certification (Mesh) Model
http://www.galexia.com/public/research/assets/pki_interoperability_models_2005/pki_interoperability_models_2005-4_1_.html
Dec 2004Version 1
Bridge Model
http://www.galexia.com/public/research/assets/pki_interoperability_models_2005/pki_interoperability_models_2005-4_1_.html
Dec 2004Version 1
Current important PKI Designs
• Europe - ISA
• OASIS PKI Forum
• The Asia PKI Forum
• APEC
Dec 2004Version 1
Thank you for your attention
You questionMy
Answer