Digital Certificates and Public-Key Infrastructures

2004 ◽  
pp. 64-97
Author(s):  
Diana Berbecaru ◽  
Corrado Derenale ◽  
Antonio Lioy
Keyword(s):  
Public Key Infrastructure ◽  
Public Key ◽  
Key Generation ◽  
Certificate Revocation ◽  
Digital Certificates ◽  
Organizational Procedures ◽  
Technical Solutions

The technical solutions and organizational procedures used to manage certificates are collectively named Public Key Infrastructure (PKI). The overall goal of a PKI is to provide support for usage of public-key certificates within – and also outside – its constituency. To this aim, several functions are needed, such as user registration, key generation, certificate revocation and many others. It is the aim of this paper to describe issues related to digital certificates and PKIs, both from the technical and management viewpoint.

Digital Certificates and Public-Key Infrastructures

2008 ◽  
pp. 1210-1235
Author(s):  
Diana Berbecaru ◽  
Corrado Derenale ◽  
Antonio Lioy
Keyword(s):  
Public Key Infrastructure ◽  
Public Key ◽  
Key Generation ◽  
Certificate Revocation ◽  
Digital Certificates ◽  
Organizational Procedures ◽  
Technical Solutions

The technical solutions and organizational procedures used to manage certificates are collectively named Public Key Infrastructure (PKI). The overall goal of a PKI is to provide support for usage of public-key certificates within – and also outside – its constituency. To this aim, several functions are needed, such as user registration, key generation, certificate revocation and many others. It is the aim of this paper to describe issues related to digital certificates and PKIs, both from the technical and management viewpoint.

Certificates and Public Key Infrastructure

2008 ◽  
pp. 217-245
Author(s):  
Manuel Mogollon
Keyword(s):  
Access Control ◽  
Digital Signature ◽  
Public Key Infrastructure ◽  
Public Key ◽  
Comprehensive System ◽  
Public Key Encryption ◽  
Control Data ◽  
The Public ◽  
Digital Certificates ◽  
Public Keys

In public-key encryption, the secrecy of the public key is not required, but the authenticity of the public key is necessary to guarantee its integrity and to avoid spoofing and playback attacks. A user’s public key can be authenticated (signed) by a certificate authority that verifies that a public key belongs to a specific user. In this chapter, digital certificates, which are used to validate public keys, and certificate authorities are discussed. When public-key is used, it is necessary to have a comprehensive system that provides public key encryption and digital signature services to ensure confidentiality, access control, data integrity, authentication, and non-repudiation. That system, public-key infrastructure or PKI, is also discussed in this chapter.

scholarly journals Audited credential delegation: a usable security solution for the virtual physiological human toolkit

2011 ◽  
Vol 1 (3) ◽  
pp. 462-473 ◽  
Author(s):  
Ali N. Haidar ◽  
Stefan J. Zasada ◽  
Peter V. Coveney ◽  
Ali E. Abdallah ◽  
Bruce Beckles ◽  
...  
Keyword(s):  
Personalized Medicine ◽  
End Users ◽  
Public Key Infrastructure ◽  
Public Key ◽  
End User ◽  
Usable Security ◽  
Secure Access ◽  
Digital Certificates ◽  
Access Grid ◽  
Grid Based

We present applications of audited credential delegation (ACD), a usable security solution for authentication, authorization and auditing in distributed virtual physiological human (VPH) project environments that removes the use of digital certificates from end-users' experience. Current security solutions are based on public key infrastructure (PKI). While PKI offers strong security for VPH projects, it suffers from serious usability shortcomings in terms of end-user acquisition and management of credentials which deter scientists from exploiting distributed VPH environments. By contrast, ACD supports the use of local credentials. Currently, a local ACD username–password combination can be used to access grid-based resources while Shibboleth support is underway. Moreover, ACD provides seamless and secure access to shared patient data, tools and infrastructure, thus supporting the provision of personalized medicine for patients, scientists and clinicians participating in e-health projects from a local to the widest international scale.

Sign in / Sign up

Export Citation Format

Share Document