Security
  Home arrow Security arrow PKI: Looking at the Risks
Dev Shed Forums 
Administration  
AJAX  
Apache  
BrainDump  
DHTML  
Flash  
Java  
JavaScript  
Multimedia  
MySQL  
Oracle  
Perl  
PHP  
Practices  
Python  
Reviews  
Security  
Smartphone Development  
Style-Sheets  
Web Services  
XML  
Zend  
Zope  
Mobile Linux 
App Generation ROI 
IBM® developerWorks 
Forums Sitemap 
E-Commerce Hosting 
Linux Web Hosting 
Managed Hosting 
Small Business Hosting 
VPS Hosting 
Weekly Newsletter

 
Developer Updates  
Free Website Content 
 RSS  Articles
 RSS  Forums
 RSS  All Feeds
Write For Us Get Paid 
Request Media Kit
Contact Us 
Site Map 
Privacy Policy 
Support 
 USERNAME
 
 PASSWORD
 
 
  >>> SIGN UP!  
  Lost Password? 
Google.com  
SECURITY

PKI: Looking at the Risks
By: Eliana Stavrou
  • Search For More Articles!
  • Disclaimer
  • Author Terms
    		•
    Rating: starstarstarstarstar / 9
    2005-01-24


    Table of Contents:
  • PKI: Looking at the Risks
  • Trust establishment
  • Private key protection
  • CRL availability
  • Key generation
  • Legislation compliance
    		•

    Rate this Article: Poor Best 
      ADD THIS ARTICLE TO:
      error-file:tidyout.log Del.ici.ous error-file:tidyout.log Digg
      error-file:tidyout.log Blink error-file:tidyout.log Simpy
      error-file:tidyout.log Google error-file:tidyout.log Spurl
      error-file:tidyout.log Y! MyWeb error-file:tidyout.log Furl
    Email Me Similar Content When Posted
    Add Developer Shed Article Feed To Your Site
    Email Article To Friend
    Print Version Of Article
    PDF Version Of Article

    		 
     
    ADVERTISEMENT

    PKI: Looking at the Risks
    (Page 1 of 6 )

    Public key infrastructure (PKI) is an excellent technology to help users certify that the people or companies they are corresponding with are who they say they are. It has proven itself invaluable in e-commerce among other areas. As with any technology, however, it is not without its own security risks. Eliana Stavrou discusses these risks, and ways to minimize them.

    To be fair to the readers, I believe that it is time to explain the possible risks and threats associated with Public Key Infrastructure (PKI). Until now, I have given you a lot of information on how to use PKI. (Editor's note: see Eliana Stavrou's articles on ASP Free). Although PKI is considered a must-have technology, it is not bullet-proof. Any security solution we have applied has its own problems; so does PKI. A silver bullet may not exist to solve all the security issues, but a combination of solutions along with the knowledge of their drawbacks gives us the vantage to close open holes and create a strong security solution.

    In this article, I will discuss concepts related to PKI technology, so you need to be familiar with the PKI process.

    The risks that are described in this article are the following:

    1. Trust establishment

    2. Private key protection

    3. CRL availability

    4. Key generation

    5. Legislation compliance 




    Discuss PKI: Looking at the Risks
     
    Hi to all readers,thank you for stopping by my article. As you will read in this...
    >>> Post your comment now!
     


     
     
    >>> More Security Articles          >>> More By Eliana Stavrou
     

       

    SECURITY ARTICLES

    - Critical Microsoft Visual Studio Security Pa...
    - US Faces Tech Security Expert Deficit
    - LAN Reconnaissance
    - An Epilogue to Cryptography
    - A Sequel to Cryptography
    - An Introduction to Cryptography
    - Security Overview
    - Network Security Assessment
    - Firewalls
    - What’s behind the curtain? Part II
    - What’s behind the curtain? Part I
    - Vectors
    - PKI: Looking at the Risks
    - A Quick Look at Cross Site Scripting
    - PKI Architectures: How to Choose One
    Find More Security Articles

    Code Security
    Improve code security with Klocwork's static analysis and productivity

     



    © 2003-2010 by Developer Shed. All rights reserved. DS Cluster 6 Hosted by Hostway
    For more Enterprise Application Development news, visit eWeek