You are here: silicon.com > Resources > White Papers > Security > Authentication - Encryption > PKI

PKI White Papers

Extending BAN Logic for Reasoning With Modern PKI-Based Protocols

Tags:
pki

Overview BAN Logic is a well-known authentication logic which, despite other more recent logics and formal methods, remains popular with many protocol designers. BAN Logic however does not properly deal with the issues of certificates and the use of Public Key Infrastructure (PKI). This paper proposes an extension to BAN Logic which focuses on certificate processing within the PKI setting. The extension is along the lines of the work by Gaarder and Snekkenes but better captures current aspects of PKI. In particular, the extension redresses the reasoning on the goodness of private keys, and considers certificate revocation. Common pitfalls in public-key based protocol design are due to insufficient attention placed on the "Intended recipient" as well as the "Stated sender" of a message.

Further White Paper Details
Publisher	National University of Singapore	File Format	PDF
Date Published	August 2008
Format	White Papers
Topics	PKI

Did you find this white paper useful?

Data Security Mythbusters: Public Key Infrastructure (PKI)

In today's business environment, enterprises must work even harder than before to protect one of their most valuable assets - their information. When facing the pressures of regulatory oversight, email...

Publisher:
Pkware

Tags:
pki

Why Outsourcing Your PKI Provides the Best Value: A Total Cost of Ownership Analysis

Once one conclude that one needs a certificate to exchange information online securely, turn on the security inherent in existing applications, or authenticate to users, computers, VPN, the Web, or...

Publisher:
Entrust

Tags:
network security

Sub-Prime PKI: Attacking Extended Validation SSL

One of the attributes that the paper discusses is the type of SSL certificate presented by a web server when negotiating a secure connection. Modern web browsers support both Domain...

Publisher:
Black Hat

Tags:
ssl - tls

PKI and UDDI Based Trust Centre: An Attempt to Improve Web Service Security

Nowadays Internet becomes the most used tool for the ever increasing amount of various transactions between institutions, organizations and more generally between clients and providers. Conducted studies and experiments showed...

Publisher:
University of Sfax

Tags:
pki

VeriSign PKI-Based Certificates Are Rock Solid: From the Tumultuous Launch of the Integrated Cargo System to Today

Representing 250 customs brokers and freight forwarding businesses in Australia, the Customs Brokers and Forwarders Council of Australia Inc. (CBFCA) is an industry association that represents members' interests in various...

Publisher:
VeriSign

Tags:
pki

Finland's argument for a smartcard future

Elisa Communications manages the database of public keys and the archive of certificates. ICL Invia acts as the main technology integrator, and iD2 Technologies as the supplier of the PKI technology. The solution uses PKI encryption technology and...

Channel:
Comment & Analysis

iMode users get secure m-commerce

Digital certificates and SSL are key components within a public key infrastructure (PKI). Digital certificates provide authentication for mobile users and websites and activate the secure socket layer (SSL) protocol offering an encrypted channel...

Channel:
Security Strategy

nCipher teams up with HyperTrust

It allows HyperTrust to host customers' secure email, certificate validation and time stamping which utilise the public key infrastructure (PKI) technology. The deal will see HyperTrust using nCipher's encryption hardware to store its customers...

Channel:
SOA/Web Services

Infosecurity successful for all but hacked Argus

Cable and Wireless demonstrated its public key infrastructure (PKI) solution for internet protocol virtual private networks (IP-VPN) saying the product, to be launched in within the next five months, will give it the edge over its rivals by...

Channel:
Security Strategy

Through the fog... Public Key Infrastructure

In its wisdom, the industry has defined a framework known as the Public Key Infrastructure (PKI) as a management mechanism for public keys. Get to know PKI. Security vendors such as RSA and Entrust have been baffled for years as to why the take-up...

Channel:
Comment & Analysis

CIOs: Go large for services

Removed redundant pricing logic from more than 150 systems, improving the accuracy and application of pricing decisions across product lines It has aspects of traditional services in terms of data, processing logic and interfaces.

Channel:
IT Director
Tags:
cios,
services

Featured White Papers

Harnessing the Power of Location Intelligence in the Public Sector

Throughout the world, public services today are under pressure. The current economic climate, where taxreceipts are naturally suppressed, provides very seriousfunding challenges. Moreover, in good times and bad, increasing regulation at the regional and national level is imposing additional duties and responsibilities on the public services without additional resources to carry them out. Store closures are changing the urban landscape. Demographic and/or economic change isincreasing demand for health and social services.Demand for decreased crime rates is focusing minds in law enforcement. And the threat of internationalterrorism is forcing greater contingency duties on the emergency services. The net result is a need to do more with lessquite a challenge.

Publisher:
Pitney Bowes

IBM XIV® Storage System: Power Consumption Reinvented

Reducing power consumption is one of the most significant challenges of IT centers today. With storage needs on a steep rise, it is increasingly clear that new approaches must be explored. This IBM whitepaper shows how, on average, a traditional storage system using mirroring effectively uses less than 21% of its raw capacity, and an XIV system uses approximately 46% of its raw capacity.

Publisher:
IBM

3 Strategies for Reducing IT Support Costs

As companies brace for more bumps in the economic downturn, many organisations are indiscriminately cutting costs. To ensure a seamless transition into the post-recession market, however, slashing and burning is not recommended. Now is the time to strategically trim and strengthen for success. This IDC White Paper explores 3 tangible areas that IT departments should investigate to help strategise cost reduction during the downturn. Download the White Paper to learn: -- Why IT utilisation, end-user support and maintenance budgets are the most strategic areas to investigate -- How to effectively approach cost-saving measures within these areas while maintaining IT performance -- Tools and services the IDC recommends for achieving maximum cost savings and efficiency