PKI


Also found in: Dictionary, Thesaurus, Medical, Legal, Acronyms, Wikipedia.

PKI

PKI

(Public Key Infrastructure) A framework for creating a secure method for exchanging information based on public key cryptography. The foundation of a PKI is the certificate authority (CA), which issues digital certificates that authenticate the identity of organizations and individuals over a public system such as the Internet. The certificates are also used to sign messages (see code signing), which ensures that messages have not been tampered with. For more on how certificates and public keys are used, see digital certificate.

Inhouse PKIs
A PKI can also be implemented by an enterprise for internal use to authenticate employees accessing the network. In this case, the enterprise is its own certificate authority (CA). For details on the public key system, see cryptography.

Managing the Root Key
The root key is the public/private key pair of the certificate authority. If the private part of that root key is ever discovered, all the certificates issued under that key pair are compromised. Creating and keeping the private key very private is critical.

All Encompassing
The PKI establishes the encryption algorithms, levels of security and distribution policy to users. The PKI embraces all the software (browsers, email programs, etc.) used to support the process by examining and validating the certificates and signed messages. See digital certificate, digital signature, root key, web of trust and DST.


Keeping the Root Key Secure
Gemalto's Luna is a line of hardware security module (HSM) products that generate the root key in a PKI system and keep the private key secure. (Image courtesy of Gemalto NV, www.gemalto.com)
References in periodicals archive ?
This deployment is exactly the sort of environment for information sharing that the SPYRUS PKI System was designed to secure.
To align operations with the DoD's PKI and Defense In Depth initiatives, the Army decided to standardize on Tumbleweed VA, concluding that the product satisfies its requirements for a cost-effective solution that provides capabilities to speed the real-time validation of digital certificates, ensure secure communications, and to support the system-wide use of smart cards for cryptographic access to desktop, server, and network resources.
Four key things you need to know about the global PKI market
The DoD PKI certification applies to F-Secure SSH UNIX server and client products which are available to public and private sector customers on a global basis.
The biggest challenges with PKI are developing and migrating applications using PKI, cumbersome client updates, and the high processing costs associated with PKI.
We are honored to have been selected by DoD PKI PMO to provide digital certificate validation.
3eTI is a wireless infrastructure and application company providing secure solutions for: WLANs, wireless sensor networks, mesh networking, RFID, wireless video, PKI, and location-based context-aware solutions.
We're issuing an industry-wide Call-to-Action to increase use of a technology that is essential to achieve the level of security needed in today's world," said Steve Hanna of Sun Microsystems, co-chair of the OASIS PKI Technical Committee.
The breakthrough PKI Express technology solution played a major role in the Joint Warrior Interoperability Demonstration (JWID) 2003.
According to a preliminary memorandum of understanding with PKI Solutions, E-City Software would acquire from PKI Solutions all right, title and interest in the IDRx(TM) project in exchange for restricted common stock of E-City Software issued to the PKI Solutions shareholders prorata, coupled with PKI Solutions receiving a contract for further development, marketing and implementation of the project.
Baltimore's flagship UniCert product is the world's leading PKI infrastructure, with more than 300 customers worldwide in the high-end government, finance and telecommunications markets.
With the combination of growing government Information Technology budgets and increased emphasis on an open standards enterprise approach to enhance security, our products are well suited to meet the DoD's needs for a commercially-based and adaptable PKI infrastructure.