Apples, Oranges And The Public Key Infrastructure (Pki) presented at 8th USENIX Security Symposium 1999

by Paul Oorschot,

Tags: Security Infrastructure

Summary : The unprecedented growth of the Internet is surpassed only by the confusion resulting from the rapid introduction of new technologies. A prime example is the application of Public Key Infrastructure (PKI) to a wide array of products, systems, and services. Many experts are positioning the Public Key Infrastructure as the answer to all security questions; other experts dismiss PKI as a poor fit for commercial problems. Both groups are correct – within their own unspoken definitions – and this is precisely the problem, namely the lack of common understanding of what PKI encompasses. In an attempt to clear the smoke (rather than to just move it around), this talk outlines the components of a baseline architecture for a managed PKI, explores standard features, and examines how these match the security requirements in a commercial world where public key certificates form the basis for security.