Public Key Infrastructure

(redirected from Trust certificate)
Also found in: Dictionary, Medical.

Public Key Infrastructure

(cryptography, communications)
(PKI) A system of public key encryption using digital certificates from Certificate Authorities and other registration authorities that verify and authenticate the validity of each party involved in an electronic transaction.

PKIs are currently evolving and there is no single PKI nor even a single agreed-upon standard for setting up a PKI. However, nearly everyone agrees that reliable PKIs are necessary before electronic commerce can become widespread.

US DOD PKI.

US NIST PKI.

IETF PKIX Working Group.
This article is provided by FOLDOC - Free Online Dictionary of Computing (foldoc.org)

PKI

(Public Key Infrastructure) A framework for creating a secure method for exchanging information based on public key cryptography. The foundation of a PKI is the certificate authority (CA), which issues digital certificates that authenticate the identity of organizations and individuals over a public system such as the Internet. The certificates are also used to sign messages (see code signing), which ensures that messages have not been tampered with. For more on how certificates and public keys are used, see digital certificate.

In-house PKIs
A PKI can also be implemented by an enterprise for internal use to authenticate employees accessing the network. In this case, the enterprise is its own certificate authority (CA). For details on the public key system, see cryptography.

Managing the Root Key
The root key is the public/private key pair of the certificate authority. If the private part of that root key is ever discovered, all the certificates issued under that key pair are compromised. Creating and keeping the private key very private is critical.

All Encompassing
The PKI establishes the encryption algorithms, levels of security and distribution policy to users. The PKI embraces all the software (browsers, email programs, etc.) used to support the process by examining and validating the certificates and signed messages. See digital certificate, digital signature, root key, web of trust and DST.


Keeping the Root Key Secure
Gemalto's Luna is a line of hardware security module (HSM) products that generate the root key in a PKI system and keep the private key secure. (Image courtesy of Gemalto NV, www.gemalto.com)
Copyright © 1981-2019 by The Computer Language Company Inc. All Rights reserved. THIS DEFINITION IS FOR PERSONAL USE ONLY. All other reproduction is strictly prohibited without permission from the publisher.
References in periodicals archive ?
This proposal required approval of at least 66 2/3% in interest of trust certificate holders, or at least 8,746,674 units.
It priced a 2.5-year USD225 million RegS floating rate note Sukuk at 3mL+160bps under its USD2.5 billion existing trust certificate issuance program on 31st May.
Dentons, a leading global law firm, said it had advised Islamic Development Bank (IsDB) on the issuance of E650 million ($740 million) trust certificates due for 2023 under its $25-million Trust Certificate Issuance Programme, which was previously updated by IsDB and IDB Trust Services Limited on June 7.
Al Hilal Bank has said that it has acquired a private placement funding worth USD225m under its existing Trust Certificate Issuance Program of USD2.5bn.
Standard & Poor's Ratings Services has assigned a 'BBB' issue rating to the $1 billion trust certificate program to be launched by MAF Sukuk Ltd., the special purpose vehicle incorporated in the Cayman Islands.
The bank, which last month sold a $500 million, five-year Islamic bond, had issued the maturing sukuk in 2006 as part of a $5 billion trust certificate programme.
The agency has also affirmed the senior unsecured ratings of 'A' for Etihad's EMTN programme and for Unity 1 Sukuk Limited's USD3 billion trust certificate issuance programme and trust certificates issued under the programme.
Fitch Ratings has assigned a final rating of 'A+' to Saudi Arabia's trust certificate programme and US dollar-denominated sovereign global certificates (Sukuk) issued through KSA Sukuk Limited under the programme.
Moody's Investors Service has assigned a provisional programme rating of (P)A1 to the global Trust Certificate Issuance Programme (the Programme) established by the Government of Saudi Arabia (A1 stable).