Presentation is loading. Please wait.

Presentation is loading. Please wait.

Tim Polk, NIST PKI Program Manager March 2000

Published bySylvia Richards Modified over 5 years ago

Similar presentations

Presentation on theme: "Tim Polk, NIST PKI Program Manager March 2000"— Presentation transcript:

1 Tim Polk, NIST PKI Program Manager wpolk@nist.gov March 2000
Component, Enterprise, Or Application? Choices In Interoperability Testing Tim Polk, NIST PKI Program Manager March 2000 October 28, 2019

2 PKI Interoperability Three different aspects to PKI interoperability
Component interoperability Enterprise interoperability Application interoperability October 28, 2019

3 PKI Component Interoperability
Ability to mix and match COTS PKI products Depends upon specification-based messages exchanged between components to support: Certificate requests Certificate renewal Certificate revocation CA RA Client Repository October 28, 2019

4 Factors For Component Interoperability
Algorithm suite Certificate management protocols Certificate issuance Certificate revocation Transport mechanisms October 28, 2019

5 Enterprise Interoperability
Enterprise A PKI CA RA Client Repository A Enterprise B PKI Repository B The ability to connect two enterprise PKIs into a larger functional PKI More than just cross-certification Clients must be able to find and validate meaningful certification paths October 28, 2019

6 Factors for Enterprise Interoperability
Algorithm suite Certificate format and extension set Certificate policies Certificate status information formats Path building and validation across PKIs October 28, 2019

7 Application Interoperability
Enterprise A PKI CA RA Client Repository A Enterprise B PKI Repository B The ability of PKI-aware applications to: Share PKI certificates, key-pairs, and processing modules Rely on different PKI environments to implement security services October 28, 2019

8 Factors for Application Interoperability
Ability to share cryptographic modules OR export/import cryptographic materials Cryptographic application programming interfaces (APIs) Access to path validation and path building utilities Consistency of processing Feature sets October 28, 2019

9 Does Anyone Care? Yes, to different degrees
Application interoperability is the real goal In fact, it’s an expectation, especially for electronic mail Enterprise interoperability is the prerequisite for application interoperability Component interoperability will reduce cost and increase choices - some day October 28, 2019

10 What NIST Is Doing Promote Interoperability
Certificate Formats and Profiles Certificate Management Protocols MISPC V2 (soon!) and interoperability workshops Encouraging multi-algorithm solutions through expanded FIPS, MISPC Pursuing Bridge CA Concept Profiles for PKI-Enabled Application Interoperability Testing October 28, 2019

11 NIST And Interoperability Testing
CMP interoperability workshops Bridge CA demonstration and testing (ongoing) Path Validation Test Suite (end of FY00) S/MIME v3 interoperability testing (FY01) October 28, 2019

12 S/MIME Interoperability Testing
Remote testing against the Van Dyke reference implementation May use NIST issued certificates to eleiminate enterprise interoperability issues OR May use locally issued certificates if your PKI is cross certified with the Federal Bridge CA May be followed by tests for additional applications October 28, 2019

13 For More Information Tim Polk (301) 975-3348 wpolk@nist.gov
October 28, 2019

Download ppt "Tim Polk, NIST PKI Program Manager March 2000"

Similar presentations

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.

PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.

15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
PKI -An Industry Perspective Lisa Pretty Executive Director.

PKI -An Industry Perspective Lisa Pretty Executive Director.
Lecture 23 Internet Authentication Applications

Lecture 23 Internet Authentication Applications
HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.

HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.
Public Key Infrastructure Ben Sangster February 23, 2006.

Public Key Infrastructure Ben Sangster February 23, 2006.
Tim Polk, NIST wpolk@nist.gov PKI Overview Tim Polk, NIST wpolk@nist.gov.

Tim Polk, NIST PKI Overview Tim Polk, NIST
Uncle Sam, Meet The PKI! Richard Guida Chair, Federal PKI Steering Committee Michèle Rubenstein Department of the Treasury,

Uncle Sam, Meet The PKI! Richard Guida Chair, Federal PKI Steering Committee Michèle Rubenstein Department of the Treasury,
Resource PKI: Certificate Policy & Certification Practice Statement Dr. Stephen Kent Chief Scientist - Information Security.

Resource PKI: Certificate Policy & Certification Practice Statement Dr. Stephen Kent Chief Scientist - Information Security.
Sentry: A Scalable Solution Margie Cashwell Senior Sales Engineer Sept 2000 Margie Cashwell Senior Sales Engineer

Sentry: A Scalable Solution Margie Cashwell Senior Sales Engineer Sept 2000 Margie Cashwell Senior Sales Engineer
PKI Technology & Interoperability Lisa Pretty Executive Director.

PKI Technology & Interoperability Lisa Pretty Executive Director.
EDUCAUSE Fed/Higher ED PKI Coordination Meeting

EDUCAUSE Fed/Higher ED PKI Coordination Meeting
Understanding and Leveraging MU2 Optional Transports Paul M. Tuten, PhD Senior Consultant, ONC Leader, Implementation Geographies Workgroup, Direct Project.

Understanding and Leveraging MU2 Optional Transports Paul M. Tuten, PhD Senior Consultant, ONC Leader, Implementation Geographies Workgroup, Direct Project.
IDA Security Experts Workshop Olivier LIBON Vice President – GlobalSign November 2000.

IDA Security Experts Workshop Olivier LIBON Vice President – GlobalSign November 2000.
Introduction to Secure Messaging The Open Group Messaging Forum April 30, 2003.

Introduction to Secure Messaging The Open Group Messaging Forum April 30, 2003.
Lecture 23 Internet Authentication Applications modified from slides of Lawrie Brown.

Lecture 23 Internet Authentication Applications modified from slides of Lawrie Brown.
Presented at: Demonstrations and Prototypes TIM 7 Presented by: Dominic Timoteo / Shoeb Jafri SWIM Implementation Team May 04, 2011 Federal Aviation Administration.

Presented at: Demonstrations and Prototypes TIM 7 Presented by: Dominic Timoteo / Shoeb Jafri SWIM Implementation Team May 04, 2011 Federal Aviation Administration.
Java Security Pingping Ma Nov 2 nd, 2006. Overview Platform Security Cryptography Authentication and Access Control Public Key Infrastructure (PKI)

Java Security Pingping Ma Nov 2 nd, Overview Platform Security Cryptography Authentication and Access Control Public Key Infrastructure (PKI)
Configuring Directory Certificate Services Lesson 13.

Configuring Directory Certificate Services Lesson 13.

Similar presentations

Ads by Google