Authentication - Encryption - IT Library : ZDNet Asia

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

Role Sharing in Password-Enabled PKI 2007-12-01 James Madison University

Password-enabled PKI schemes simplify the management of end users' private keys by storing them in password-protected form on a centralized on-line server. Under such schemes an end user needs only remember his password and can access his private key from anywhere the centralized server is available. Existing password-enabled PKI schemes are based on the single-user model where a private key is owned by one user. This paper presents mechanisms to support role sharing in password-enabled PKI. In these schemes, using passwords only, a group of users share the privileges of a role through sharing the private key of that role. A hybrid password-enabled PKI scheme is developed, which supports both easy password change and misuse monitoring.

Tags: Security Tools

PKI: Ten Years Later 2007-12-01 University of Ottawa

This paper examines the history and evolution of so-called Public Key Infrastructure (PKI). It compares the original definition of PKI with a broader and more flexible definition that better reflects the variety of implementation philosophies available today. This current definition shows how the understanding of this technology has matured (although its essential characteristics have remained unchanged) and is derived, at least in part, from an evaluation and comparison of several quite different forms of PKI as well as a consideration of PKI criticisms over the years. The original definition of PKI may be dead or dying, but PKI technology continues to thrive as an extremely useful (and, in some cases, necessary) authentication solution.

Tags: Security Tools

Regulations Shift Focus on Outbound Email Security: The Impact of HIPAA, PCI, PIIG and Other New Government and Industry Guidelines on Email Security Policies 2007-11-02 Proofpoint

Email is the lingua franca of business today. It is the conduit that allows employees to share information, companies to work with partners, and increasingly, provides a way for companies and their customers to interact. Enterprises today deal with an ever-increasing number of email-related threats. Most are familiar with the problems of virus-infected email attachments and productivity-draining spam, but now companies must also address the threats posted by outbound email.

Read this paper to learn about the impact of relatively new data protection regulations and standards such as the Payment Card Industry (PCI) Data Security Standard (DSS) and the Office of Management and Budget (OMB) Personally Identifiable Information Guidelines (PIIG) which place new constraints on how data is stored, processed, and transmitted over email.

Tags: Security Management, SSL - TLS, E-commerce Security, Sarbanes-Oxley, Data Recovery - Security, Email, HIPAA, Gramm-Leach-Bliley Act

How to comply with the Payment Card Industry Standard 2007-08-07 Astaro AG

The Payment Card Industry (PCI) Standard applies to every organization that processes credit or debit card information, including merchants and third-party service providers that store, process or transmit credit card/debit card data.

This new set of guidelines and operational requirements went into effect June 30th, 2007, and companies outlined above are now required to adhere to the PCI standard. Failure to comply with the Payment Card Industry security standards may result in heavy fines, restrictions or permanent expulsion from card acceptance programs.

Download this Astaro OrangePaper to learn more.

Tags: Digital Signatures, SSL - TLS, E-commerce Security, Security Tools, Anti-Hacking, Security Standards, Data Recovery - Security, Best Practices

AutoPKI: A PKI Resources Discovery System? 2007-08-01 Dartmouth College

The central goal of Public Key Infrastructure (PKI) is to enable trust judgments between distributed users. Although certificates play a central role in making such judgments, a PKI's users need more than just knowledge of certificates. Minimally, a relying party must able to locate critical parameters such the certificate repositories and certificate validation servers relevant to the trust path under consideration. Users in other scenarios may require other resources and services. Surprisingly, locating these resources and services remains a largely unsolved problem in real-world X.509 PKI deployment. This paper presents the design and prototype of a new and flexible solution for automatic discovery of the services and data repositories are available from a Certificate Service Provider (CSP).

Tags: Security Tools

Electric Bill Presentment and Payment - The Gateway to One-on-one Customer Relationships 2007-07-07 Personix

The benefi ts of electronic bill presentment and payment (EBPP) are undeniable. Although its promises have been promoted for a decade, it has fi nally reached critical mass in the market with the number of electronic bill payments surpassing checks in 2006. However, the technical and financial effort required for a biller to implement an in-house EBPP solution can be both challenging and expensive.

Tags:

The Digital Signature Paradox 2007-07-07 ProofSpace

Paradox is a term often associated with Hollywood's fanciful time travel; however in the real world a time paradox does in fact exist. The system clock is the immediate source of time for any computer; and is the sole source for a time stamp determining when a document was created, modified and printed; or more interestingly when a digital signature was generated.

Electronic Signature Assurance and the Digital Chain of Evidence 2007-07-07 ProofSpace

This white paper defines the life cycle of an electronically signed record and describes the equivalence requirements throughout its retention period. A risk management framework is presented that defines a generic Digital Chain of Evidence that guides the architectural choices available in deploying an electronic signature solution.

Adobe Solutions for the SAFE Standard 2007-05-01 Adobe Systems

SAFE has helped to significantly advance the legal, business, and technical outlook for electronic transactions worldwide. By standardizing on Adobe PDF, SAFE has also taken a significant step toward promoting the ubiquity of electronically signed documents. In turn, Adobe's built-in support for the SAFE standards demonstrates the flexibility and capability of Acrobat and Reader. Acrobat and Reader require minimal customization and interoperate directly with the standards-based PKI infrastructure of SAFE. Perhaps most important, this means that PDF signatures with Acrobat and Reader work more like traditional paper signatures than any other solution.

The Directory-Enabled PKI Appliance: Digital Signatures Made Simple, Approach and Real World Experience 2007-02-28 ARX

This paper presents a novel approach for a PKI based digital signature system for documents in an enterprise setting. A centralized appliance securely stores users' private signing keys. The appliance interfaces with the existing enterprise directory to automatically provision users' keys and certificates. Users authenticate to the appliance using their existing directory credentials in order to access their signing keys. Client applications send document hash values to the appliance to be signed therefore the signing keys themselves never leave the appliance. Streamlined user interface methods enable easy acceptance by users, while streamlined management enables minimal ongoing investment by IT staff. Real world experience with the described system is presented and shows successful deployment in a variety of organizations and markets.

Tags: Security Tools

Jump to [1] 2 3 4 5 6 7 8 9 10

Title	Date Added	Company
Role Sharing in Password-Enabled PKI	2007-12-01	James Madison University
Password-enabled PKI schemes simplify the management of end users' private keys by storing them in password-protected form on a centralized on-line server. Under such schemes an end user needs only remember his password and can access his private key from anywhere the centralized server is available. Existing password-enabled PKI schemes are based on the single-user model where a private key is owned by one user. This paper presents mechanisms to support role sharing in password-enabled PKI. In these schemes, using passwords only, a group of users share the privileges of a role through sharing the private key of that role. A hybrid password-enabled PKI scheme is developed, which supports both easy password change and misuse monitoring. Tags: Security Tools
PKI: Ten Years Later	2007-12-01	University of Ottawa
This paper examines the history and evolution of so-called Public Key Infrastructure (PKI). It compares the original definition of PKI with a broader and more flexible definition that better reflects the variety of implementation philosophies available today. This current definition shows how the understanding of this technology has matured (although its essential characteristics have remained unchanged) and is derived, at least in part, from an evaluation and comparison of several quite different forms of PKI as well as a consideration of PKI criticisms over the years. The original definition of PKI may be dead or dying, but PKI technology continues to thrive as an extremely useful (and, in some cases, necessary) authentication solution. Tags: Security Tools
Regulations Shift Focus on Outbound Email Security: The Impact of HIPAA, PCI, PIIG and Other New Government and Industry Guidelines on Email Security Policies	2007-11-02	Proofpoint
Email is the lingua franca of business today. It is the conduit that allows employees to share information, companies to work with partners, and increasingly, provides a way for companies and their customers to interact. Enterprises today deal with an ever-increasing number of email-related threats. Most are familiar with the problems of virus-infected email attachments and productivity-draining spam, but now companies must also address the threats posted by outbound email. Read this paper to learn about the impact of relatively new data protection regulations and standards such as the Payment Card Industry (PCI) Data Security Standard (DSS) and the Office of Management and Budget (OMB) Personally Identifiable Information Guidelines (PIIG) which place new constraints on how data is stored, processed, and transmitted over email. Tags: Security Management, SSL - TLS, E-commerce Security, Sarbanes-Oxley, Data Recovery - Security, Email, HIPAA, Gramm-Leach-Bliley Act
How to comply with the Payment Card Industry Standard	2007-08-07	Astaro AG
The Payment Card Industry (PCI) Standard applies to every organization that processes credit or debit card information, including merchants and third-party service providers that store, process or transmit credit card/debit card data. This new set of guidelines and operational requirements went into effect June 30th, 2007, and companies outlined above are now required to adhere to the PCI standard. Failure to comply with the Payment Card Industry security standards may result in heavy fines, restrictions or permanent expulsion from card acceptance programs. Download this Astaro OrangePaper to learn more. Tags: Digital Signatures, SSL - TLS, E-commerce Security, Security Tools, Anti-Hacking, Security Standards, Data Recovery - Security, Best Practices
AutoPKI: A PKI Resources Discovery System?	2007-08-01	Dartmouth College
The central goal of Public Key Infrastructure (PKI) is to enable trust judgments between distributed users. Although certificates play a central role in making such judgments, a PKI's users need more than just knowledge of certificates. Minimally, a relying party must able to locate critical parameters such the certificate repositories and certificate validation servers relevant to the trust path under consideration. Users in other scenarios may require other resources and services. Surprisingly, locating these resources and services remains a largely unsolved problem in real-world X.509 PKI deployment. This paper presents the design and prototype of a new and flexible solution for automatic discovery of the services and data repositories are available from a Certificate Service Provider (CSP). Tags: Security Tools
Electric Bill Presentment and Payment - The Gateway to One-on-one Customer Relationships	2007-07-07	Personix
The benefi ts of electronic bill presentment and payment (EBPP) are undeniable. Although its promises have been promoted for a decade, it has fi nally reached critical mass in the market with the number of electronic bill payments surpassing checks in 2006. However, the technical and financial effort required for a biller to implement an in-house EBPP solution can be both challenging and expensive. Tags:
The Digital Signature Paradox	2007-07-07	ProofSpace
Paradox is a term often associated with Hollywood's fanciful time travel; however in the real world a time paradox does in fact exist. The system clock is the immediate source of time for any computer; and is the sole source for a time stamp determining when a document was created, modified and printed; or more interestingly when a digital signature was generated.
Electronic Signature Assurance and the Digital Chain of Evidence	2007-07-07	ProofSpace
This white paper defines the life cycle of an electronically signed record and describes the equivalence requirements throughout its retention period. A risk management framework is presented that defines a generic Digital Chain of Evidence that guides the architectural choices available in deploying an electronic signature solution.
Adobe Solutions for the SAFE Standard	2007-05-01	Adobe Systems
SAFE has helped to significantly advance the legal, business, and technical outlook for electronic transactions worldwide. By standardizing on Adobe PDF, SAFE has also taken a significant step toward promoting the ubiquity of electronically signed documents. In turn, Adobe's built-in support for the SAFE standards demonstrates the flexibility and capability of Acrobat and Reader. Acrobat and Reader require minimal customization and interoperate directly with the standards-based PKI infrastructure of SAFE. Perhaps most important, this means that PDF signatures with Acrobat and Reader work more like traditional paper signatures than any other solution.
The Directory-Enabled PKI Appliance: Digital Signatures Made Simple, Approach and Real World Experience	2007-02-28	ARX
This paper presents a novel approach for a PKI based digital signature system for documents in an enterprise setting. A centralized appliance securely stores users' private signing keys. The appliance interfaces with the existing enterprise directory to automatically provision users' keys and certificates. Users authenticate to the appliance using their existing directory credentials in order to access their signing keys. Client applications send document hash values to the appliance to be signed therefore the signing keys themselves never leave the appliance. Streamlined user interface methods enable easy acceptance by users, while streamlined management enables minimal ongoing investment by IT staff. Real world experience with the described system is presented and shows successful deployment in a variety of organizations and markets. Tags: Security Tools

Security

Featured Whitepapers

Member Login

Oracle Technology Solutions for Midsize Businesses

Country Insight: China