Password-enabled PKI schemes simplify the management of end users' private keys by storing them in password-protected form on a centralized on-line server. Under such schemes an end user needs only remember his password and can access his private key from anywhere the centralized server is available. Existing password-enabled PKI schemes are based on the single-user model where a private key is owned by one user. This paper presents mechanisms to support role sharing in password-enabled PKI. In these schemes, using passwords only, a group of users share the privileges of a role through sharing the private key of that role. A hybrid password-enabled PKI scheme is developed, which supports both easy password change and misuse monitoring.
Did you find this white paper useful?
3 out of 4 users found this white paper useful
Related white papers
MiniPASS: Authentication and Digital Signatures in a Constrained Environment
We describe an implementation of the PASS polynomial authentication and signature scheme that is suitable for use in highly constrained environments such as SmartCards and Wireless Applications. The algorithm underlying...
Ruesch International Partners With Baltimore To Provide Secure High Value Transactions
Ruesch International is a leading global financial institution specializing in international B2B payment solutions. The organization provides full-service foreign exchange operations in the USA, the UK, Switzerland, and the Czech...
TechNet Webcast: 24 Hours of Windows Server 2008 (Part 20 of 24): Windows Server 2008 Public Key Infrastructure (Level 200)
The presenter of this webcast covers new functionalities and enhancements for certificate services and Public Key Infrastructure (PKI) in the Windows Server 2008 operating system. The presenter explains how certificate...
Large Polish Bank Gains Advanced Public Key Infrastructure With New Server Solution
One of the largest banks in Poland wanted to build a Public Key Infrastructure (PKI) to centralize the authentication of users, devices, and applications. The bank also wanted a mechanism...
Understanding Today's Privacy Regulations
As the amount of personal information gathered and electronically stored increases, so does the concern about protecting it. Data Security, Data Protection and Data Breach Laws and Regulations...what does it...
WPA2 Security: Choosing the Right WLAN Authentication Method for Homes and Enterprises
Ask a hundred CIOs what three things about WLANs (wireless LANs) strike fear into their hearts, and the answers are likely to be similar: Security, Security, Security. Sure, you want...
New Solution Helps City Strengthen IT Security, Automate Software Distribution
As part of an ongoing effort to operate more efficiently, the City of Tampere wants to make more information and services available online while strengthening IT security. Additionally, the city...
