Sunday, November 26, 2006

Understanding PKI

Today's work is quite easy, just take care of user's request. Lucky me, there is no new request at all.

I spent my time to read some e-book related to Security+ Certification on Identifying the Components of a Public Key Infrastructure. It is quite easy to understand compare with the book that I read before.

This summary should I bare in my mind, always:
  • Using asymmetric keys without a supporting infrastructure is not scalable to a large environment. A public key infrastructure (PKI) uses asymmetric key pairs and combines software, encryption technologies, and services to provide a means of protecting the security of communications and business transactions.
  • A certificate is a digital representation of information that identifies you as a relevant entity by a trusted third party (TTP).
  • A certification authority (CA) is an entity that is recognized as an authority trusted by one or more users or processes to issue and manage certificates.
  • A certificate revocation list (CRL) is a list of certificates issued by a CA that are no longer valid.

No comments: