Printer Friendly
The Free Dictionary
990,414,035 visitors served.
?
Dictionary/
thesaurus
Medical
dictionary
Legal
dictionary
Financial
dictionary
Acronyms
 
Idioms
Encyclopedia
Wikipedia
encyclopedia
?

PKI

   Also found in: Acronyms, Wikipedia, Hutchinson 0.09 sec.

(Public Key Infrastructure) A framework for creating a secure method for exchanging information based on public key cryptography. The foundation of a PKI is the certificate authority (CA), which issues digital certificates that authenticate the identity of organizations and individuals over a public system such as the Internet. The certificates are also used to sign messages (see code signing), which ensures that messages have not been tampered with. For more on how certificates and public keys are used, see digital certificate.

Inhouse PKIs
A PKI can also be implemented by an enterprise for internal use to authenticate employees accessing the network. In this case, the enterprise is its own certificate authority (CA). For details on the public key system, see cryptography.

Managing the Root Key
The root key is the public/private key pair of the certificate authority. If the private part of that root key is ever discovered, all the certificates issued under that key pair are compromised. Creating and keeping the private key very private is critical.

All Encompassing
The PKI establishes the encryption algorithms, levels of security and distribution policy to users. The PKI embraces all the software (browsers, e-mail programs, etc.) used to support the process by examining and validating the certificates and signed messages. See digital certificate, digital signature, root key, web of trust and DST.

Generating the Root Key
SafeNet's Luna CA3 is a hardware security module (HSM) that is used to generate the root key in a PKI system and keep the private key secure. It uses a pin entry device (PED), EEPROM-based data keys and a PC Card reader that attaches to the server via an LVDS cable and PCI adapter. Containing a processor, firewall, flash memory and RAM, the PC Card is built with extra epoxy and secured with triple DES encryption. The card will destroy its contents if compromised.


The PED combines and transfers information from the data keys to the PC Card. The blue key is inserted into the PED by the security officer who sets up administrative rights, configures the HSM and determines how many people must use green keys. All parties must insert their green keys to activate the system. The black keys are used by administrators to generate and delete key pairs, and the red keys are used for grouping HSMs in domains. (Image courtesy of SafeNet, Inc., www.safenet-inc.com)

PKI - Public Key Infrastructure
?Page tools
Printer friendly
Cite / link
 Email
Feedback
? Mentioned in ? References in periodicals archive
 
SSP-Litronic will also provide commercial off the shelf (COTS) PKI client toolkits based upon the SSP NetSign PKI Client product to meet the KMI requirements.
CONTRACT AWARD: SSP-LITRONIC WINS $2.3 MILLION INITIAL CONTRACT FOR ... by EDP Weekly's IT Monitor
Northrop Grumman has cross-certified its secure public key infrastructure (PKI) system with the CertiPath PKI bridge.
Northrop Grumman Cross-Certifies with CertiPath's 'Trusted PKI Bridge' by Business Wire
FDLE Upgrades License of SPYRUS PKI to 80,000 Seats; Triples Size of Deployment
Florida Department of Law Enforcement Expands Deployment of SPYRUS ... by Business Wire
More results
 
Encyclopedia browser? ? Full browser
 
 
Encyclopedia
?

Disclaimer | Privacy policy | Feedback | Copyright © 2008 Farlex, Inc.
All content on this website, including dictionary, thesaurus, literature, geography, and other reference data is for informational purposes only. This information should not be considered complete, up to date, and is not intended to be used in place of a visit, consultation, or advice of a legal, medical, or any other professional. Terms of Use.