Public Key Infrastructure Issues for Enterprise Level Security

Kevin Foltz, William R. Simpson

2020

Abstract

A public key infrastructure (PKI) provides a way to manage identities within an enterprise. Users are provided public/private key pairs, and trusted certification authorities issue credentials binding a user name to the associated public key for that user. This enables security functions by users within the enterprise, such as authentication, signature creation and validation, encryption, and decryption. However, the enterprise often interacts with partner enterprises and the open web, which may use different PKIs. Mobile devices do not easily operate with hardware-based PKI tokens such as smartcards. Standard digital signatures lack timing information such as validity or expiration. This paper examines some of the security challenges related to PKI deployment in the context of Enterprise Level Security (ELS), an enterprise solution for a high security environment.

Download


Paper Citation


in Harvard Style

Foltz K. and Simpson W. (2020). Public Key Infrastructure Issues for Enterprise Level Security.In Proceedings of the 22nd International Conference on Enterprise Information Systems - Volume 1: ICEIS, ISBN 978-989-758-423-7, pages 91-98. DOI: 10.5220/0009342000910098


in Bibtex Style

@conference{iceis20,
author={Kevin Foltz and William Simpson},
title={Public Key Infrastructure Issues for Enterprise Level Security},
booktitle={Proceedings of the 22nd International Conference on Enterprise Information Systems - Volume 1: ICEIS,},
year={2020},
pages={91-98},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0009342000910098},
isbn={978-989-758-423-7},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 22nd International Conference on Enterprise Information Systems - Volume 1: ICEIS,
TI - Public Key Infrastructure Issues for Enterprise Level Security
SN - 978-989-758-423-7
AU - Foltz K.
AU - Simpson W.
PY - 2020
SP - 91
EP - 98
DO - 10.5220/0009342000910098