internet.com
You are in the: Small Business Computing Channelarrow
Small Business Technology
» ECommerce-Guide | Small Business Computing | Webopedia | WinPlanet

ECommerce-Guide News provides online business owners with information about new ecommerce products, ecommerce laws and taxes, trends in ecommerce and market research on how to run an eBay business.   News, reviews and practical solutions for your online business  
Home News & Trends Solutions Resources eBiz FAQ Selling on eBay Forums Video Products Glossary About
News Research Trends


Search
ECommerce-Guide

Search internet.com

Become a Partner

ECommerce Glossary
Enter a Term:

Free Newsletters
ECommerce-Guide Daily
Small Business Computing
WinPlanet
Webopedia
E-mail Offers
Newsletter Address Changes

internet.commerce
Be a Commerce Partner

internet.com
IT
Developer
Internet News
Small Business
Personal Technology

Search internet.com
Advertise
Corporate Info
Newsletters
Tech Jobs
E-mail Offers

You are in: ECommerce-Guide > News > Trends

ECommerce-Guide Essentials
eBiz FAQ
Everything you need to know to start your own successful e-business.

Selling on eBay
How to make money in the online marketplace.

PayPal Payments and More
What's new in secure payments for your online store.

Shopping Cart Software
Solutions to close, process and track your online sales.

ecommerce-guide news and trends

Growing a Tree Of Trust -- Part One
By Mark Merkow, CCP, CISSP
December 31, 1998

What are Public Key Infrastructures?

Using applied cryptography, PKIs govern the distribution and management of cryptographic keys and digital certificates that allow you to take advantage of several fundamental features:

  • Confidentiality of information assures users that their communications are safe and readable only by the intended recipients. Message encryption using digital certificates assures this confidentiality.
  • Integrity of data guarantees that message contents are not altered during the transmission between the originator and the recipient. PKIs provide for digital signatures to ensure the integrity of all transmitted information
  • User authentication enables systems and applications to verify that users are who they claim they are and have the authority to access the resource. PKIs use digital signatures and user certificates to assure the authentication of all end entities and system resources.
  • Non-repudiation prevents users of the PKI to deny that they''ve participated in a transaction or sent a message to another user or resource. With a legitimate digital signature in hand and the legitimate digital certificate that accompanies it, the chances that a message is forged or originated elsewhere approaches zero.
  • System interoperability -- due to strict standards compliance -- enables a PKI''s operation across a variety of hardware and software systems without concern for incompatibilities.

Effective PKIs are based on the Public Key Cryptographic Standards (PKCS), a family of standards which include:

  • RSA encryption for the construction of digital signatures and digital envelopes.
  • Diffie-Hellman key agreements that define how two people, with no prior arrangements, can agree on a shared secret key that''s known only between them and used for future encrypted communications.
  • Password based encryption hides private keys when transferring them between computer systems, sometimes required under Public-Private Key Cryptography.
  • Extended certificate syntax permits the addition of extensions to standard X.509 digital certificates. These extensions add information such as certificate usage policies, other identifying information, etc.
  • Cryptographic message syntax describes how to apply cryptography to related data, including digital signatures and digital envelopes.
  • Private-key information syntax describes how to include a private key along with algorithm information and a set of attributes to offer a simple way of establishing trust in information provided.
  • Certification request syntax describes the rules and sets of attributes needed for a certificate request from a certificate authority.

Recall that a digital certificate binds a previously-authenticated private key holder (a person) to the public key that accompanies it. This attestation, performed by a trusted party creates a message containing the person''s identification information, their public key, certificate usage rules, and other information. This message is then signed using the CA''s private key, and returned to the private-key holder. Additional information about digital certificates can be found in Electronic Keys For A Digital Tomorrow". PKI hierarchies of trust use this concept to manage the public keys for all users, internal and external. With a PKI in place, a "Tree of Trust" is formed to represent how Certificate Authorities control certain aspects of other Certificate Authorities in the branches below them. Constructing this tree is one of the first activities in developing a PKI and are embodied in the Certificate Practices Statement (CPS) discussed later.

Go to page: Prev  1  2  3  4  5  6  7  8  Next  

Tools:
Add ecommerce-guide.com to your favorites
Add ecommerce-guide.com to your browser search box
IE 7 | Firefox 2.0 | Firefox 1.5.x
Receive news via our XML/RSS feed



internet.commediabistro.comJusttechjobs.comGraphics.com

Search:

WebMediaBrands Corporate Info

Legal Notices, Licensing, Permissions, Privacy Policy.
Advertise | Newsletters | Shopping | E-mail Offers | Freelance Jobs

Solutions

Whitepapers and eBooks

Microsoft Articles: Visual Studio 2010
Adobe Article: Adobe Helps PHP Developers Create Rich Internet Applications
Microsoft Whitepaper: How Windows Server 2008 R2 Helps Optimize IT and Save You Money
Adobe Article: Java Developers Finding a Home at Adobe Flex
IBM Articles: A Smarter Business Needs Smarter Technology
Intel Xeon Processor Increases Server Efficiency and Capabilities
Intel Tech Brief: Automated Energy Efficiency for the Intelligent Enterprise
Oracle Whitepapers - Innovation for IT Leaders
Avaya Article: Communication-Enabled Mashups--Empowering Both Business Owners and IT
 Internet.com eBook: IT Manager's Guide to Social Networking
Internet.com eBook: Get Ready for Windows 7
Microsoft Article: Expression Web 3--New Features for PHP Developers
Whitepapers: Manage Your Business Infrastracture with IBM
Whitepaper: Maximize Your Storage Investment with HP
Internet.com eBook: Becoming a Better Project Manager
Microsoft Article: Stress Free and Efficient Designer/Developer Collaboration
MORE WHITEPAPERS, EBOOKS, AND ARTICLES

Webcasts

Webcast: Connecting PHP to Microsoft Technologies
Video: Microsoft Partner Program Benefits
Video: Windows Azure Debugging Tips
SAP BusinessObjects Webcast: Unlock the Power of Reporting with Crystal Reports
 IBM Webcast: Speed Business Innovation with Reduced Cost and Risk
Video: Deploy Applications on Windows Azure
MORE WEBCASTS, PODCASTS, AND VIDEOS

Downloads and eKits

Download: Microsoft Visual Studio 2010 Beta 2
Downloads & Free Trials: Microsoft's New Efficiency Resource Center
Get the Windows 7 SDK
 Free Trial: Red Gate SQL Backup Pro 6
Iron Speed Designer Application Generator
MORE DOWNLOADS, EKITS, AND FREE TRIALS

Tutorials and Demos

Internet.com Hot List: Get the Inside Scoop on the Hottest IT and Developer Products
All About Botnets
 MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES