Saturday, May 26, 2012

Public Key Infrastructure (Digital Cert)

The Public Key Infrastructure (PKI) is a security architecture designed to provide confidence for users in the form of security while exchanging information in an increasingly insecure internet.

As the PKI is a general overview of methods, technologies and techniques that provide a secure internet as well as the usage of public key and private key pair for authentication and proof of content, the PKI is able to provide:

  • certainty of the quality of information sent and received electronically
  • certainty of source and destination of that information
  • certainty of the privacy of the information 
  • as well as assurance that the information will be kept in such a way that it can be introduced as evidence in a court of law.
The PKI also consists of a certificate authority, which issues and verifies the digital certificate, in which is
an electronic document that uses a digital signature to bind a public key with the identity, i.e. the name or address of a person or organization. The certificate is used to verify that a public key belongs to the correct individual.

As stated above, the digital certificate provides a method of storing the public key, however in the storing of private keys, more secure measures are needed. Passwords or biometric encryption such as thumbprints can be used to ensure the security of a private key, as with the private key, the attacker can have access to more sensitive information regarding the user or his/ her organization. 

Other components that make up the PKI are such as a Registration Authority (RA) which is used by a CA. The RA performs necessary checks on the person or company requesting the certificate so as to ensure they are really who they say they are. The RA may seem like a CA to the person or company but they do not sign or validate the issued certificate. Therefore, its only purpose is to ensure that the CA issues certificates to trusted people or companies only.

Sources:


Posted by at

6 comments:

  1. UnknownMay 26, 2012 at 7:23 PM

    Hi BJ,

    I feel that the Public Key Infrastructure (PKI) allows users to information securely over an insecure network. This can be done through the use of public key (known to all) and private key (will not be transferred over the network). Wow upon reading your post, it seems we have the same opinion. What a great coincidence, don't you think? Hmm how did that happen. Anyway great job and goodbye

    ReplyDelete
  2. CCD2C01-P03-1103330EMay 26, 2012 at 7:36 PM

    hello my good friend. How are you today?im sure you are doing well.i am fine too.

    I have read your interesting post about public-key infrastructure and i must firstly say thank you very much from the very bottom of my heart, for taking the time from your busy schedule to write this post.Your post has given me a deeper understanding about this topic. I have looked at many sites regarding PKI and i must say that your post has one of the better organization of information. Your post has truly improved my understanding. i also liked that you stated some good examples.
    Once again, good job my friend & thank you veryvery much.

    ReplyDelete
  3. P03 - 1102176CMay 27, 2012 at 12:05 AM

    Yo Mr Ng Bing Jie, Why you friay so late still outside arh? naughty boy sia. Ok nvm enuf wif the crap.

    Nice and detailed post about the Public Key Infrastructure (Digital Cert). I like the part of "Other components that make up the PKI are such as a Registration Authority (RA) which is used by a CA. The RA performs necessary checks on the person or company requesting the certificate so as to ensure they are really who they say they are. The RA may seem like a CA to the person or company but they do not sign or validate the issued certificate. Therefore, its only purpose is to ensure that the CA issues certificates to trusted people or companies only." However, i feel some pictures can be added to facilitate our learning. Ok, once again, nice post and jyjy~~

    ReplyDelete
  4. Don...May 27, 2012 at 6:58 AM

    Hi Bing Jie,

    After reading your blog, I have learnt more about PKI. Your post has given me a deeper understanding about this topic. I have looked at many sites regarding PKI. I learnt that Public Key Infrastructure (PKI) allows users to information securely over an insecure network. This can be done through the use of public key (known to all) and private key (will not be transferred over the network)

    Thanks,

    Don

    ReplyDelete
  5. CCD2C01-P03-1103362HMay 27, 2012 at 9:45 AM

    Hi Bing Jie,

    After reading your post on Public Key Infrastructure (Digital Certificate), I learned something more about PKI. I have a better understanding of what PKI is able to provide with. I now know that digital certificates can provide a method of storing the public key, but with a higher security. Thank you for posting this post about Public Key Infrastructure (Digital Certificate).

    Neo Kai Xiang

    ReplyDelete
  6. UnknownNovember 25, 2013 at 7:39 AM

    With the help of this article I learned so many new as well as interesting facts about public key infrastructure. I wasn't familiar with this concept and is having only the basic idea. Thanks to you for posting.
    public key infrastructure

    ReplyDelete

Subscribe to: Post Comments (Atom)