| Title | Date Added | Company | |
|---|---|---|---|
 |
TechNet Webcast: 24 Hours of Windows Server 2008 (Part 20 of 24): Windows Server 2008 Public Key Infrastructure (Level 200) | 2008-05-07 | Microsoft Tips |
| The presenter of this webcast covers new functionalities and enhancements for certificate services and Public Key Infrastructure (PKI) in the Windows Server 2008 operating system. The presenter explains how certificate services in Windows Server 2008 include auto-enrollment and credential roaming, in addition to the Active Directory certificate server role and also examines certificate management, including enrollment and revocation features. Finally, the presenter concludes the webcast with a look at signing and deploying remote programs with certificates.
Tags: Security Tools, Windows Server 2008 |
|||
 |
Towards Management of SLA-Aware Business Processes Based on Key Performance Indicators | 2008-04-08 | University of Stuttgart |
| It is increasingly important that Service Level Agreements (SLAs) are taken into account when business processes are exposed as services in a Service Oriented Architecture. SLAs define expected service behavior and nonfunctional properties of the service. The fact that the service provider has to offer certain guarantees concerning SLA properties has an impact on the business process lifecycle. This paper introduces a stepwise approach for management of SLA-aware service compositions based on process performance requirements specified as Key Performance Indicators. The approach is based on the process lifecycle known from Business Process Management and comprises a modeling, configuration and execution phase. The paper incorporates existing work on SLA modeling, QoS aggregation, and QoS-based service selection, and identifies several problems specific to SLA-aware business processes.
Tags: SLA |
|||
 |
New Solution Helps City Strengthen IT Security, Automate Software Distribution | 2008-01-01 | Microsoft |
| As part of an ongoing effort to operate more efficiently, the City of Tampere wants to make more information and services available online while strengthening IT security. Additionally, the city wants to better manage its systems using limited IT resources. In 2007, Tampere made plans to upgrade 6,500 client computers to the Windows Vista operating system, and it began deploying the Windows Server 2008 Enterprise operating system on test servers. The city also decided to implement a Public Key Infrastructure (PKI) to help protect information that is exchanged across applications, internal networks, and the Internet.
Tags: Windows Server 2008 |
|||
|
Role Sharing in Password-Enabled PKI | 2007-12-01 | James Madison University |
| Password-enabled PKI schemes simplify the management of end users' private keys by storing them in password-protected form on a centralized on-line server. Under such schemes an end user needs only remember his password and can access his private key from anywhere the centralized server is available. Existing password-enabled PKI schemes are based on the single-user model where a private key is owned by one user. This paper presents mechanisms to support role sharing in password-enabled PKI. In these schemes, using passwords only, a group of users share the privileges of a role through sharing the private key of that role. A hybrid password-enabled PKI scheme is developed, which supports both easy password change and misuse monitoring.
Tags: Security Tools |
|||
|
PKI: Ten Years Later | 2007-12-01 | University of Ottawa |
| This paper examines the history and evolution of so-called Public Key Infrastructure (PKI). It compares the original definition of PKI with a broader and more flexible definition that better reflects the variety of implementation philosophies available today. This current definition shows how the understanding of this technology has matured (although its essential characteristics have remained unchanged) and is derived, at least in part, from an evaluation and comparison of several quite different forms of PKI as well as a consideration of PKI criticisms over the years. The original definition of PKI may be dead or dying, but PKI technology continues to thrive as an extremely useful (and, in some cases, necessary) authentication solution.
Tags: Security Tools |
|||
|
Regulations Shift Focus on Outbound Email Security: The Impact of HIPAA, PCI, PIIG and Other New Government and Industry Guidelines on Email Security Policies | 2007-11-02 | Proofpoint |
| Email is the lingua franca of business today. It is the conduit that allows employees to share information, companies to work with partners, and increasingly, provides a way for companies and their customers to interact. Enterprises today deal with an ever-increasing number of email-related threats. Most are familiar with the problems of virus-infected email attachments and productivity-draining spam, but now companies must also address the threats posted by outbound email.
Read this paper to learn about the impact of relatively new data protection regulations and standards such as the Payment Card Industry (PCI) Data Security Standard (DSS) and the Office of Management and Budget (OMB) Personally Identifiable Information Guidelines (PIIG) which place new constraints on how data is stored, processed, and transmitted over email. Tags: Security Management, SSL - TLS, E-commerce Security, Sarbanes-Oxley, Data Recovery - Security, Email, HIPAA, Gramm-Leach-Bliley Act |
|||
|
How to comply with the Payment Card Industry Standard | 2007-08-07 | Astaro AG |
| The Payment Card Industry (PCI) Standard applies to every organization that processes credit or debit card information, including merchants and third-party service providers that store, process or transmit credit card/debit card data.
This new set of guidelines and operational requirements went into effect June 30th, 2007, and companies outlined above are now required to adhere to the PCI standard. Failure to comply with the Payment Card Industry security standards may result in heavy fines, restrictions or permanent expulsion from card acceptance programs. Download this Astaro OrangePaper to learn more. Tags: Digital Signatures, SSL - TLS, E-commerce Security, Security Tools, Anti-Hacking, Security Standards, Data Recovery - Security, Best Practices |
|||
|
AutoPKI: A PKI Resources Discovery System? | 2007-08-01 | Dartmouth College |
| The central goal of Public Key Infrastructure (PKI) is to enable trust judgments between distributed users. Although certificates play a central role in making such judgments, a PKI's users need more than just knowledge of certificates. Minimally, a relying party must able to locate critical parameters such the certificate repositories and certificate validation servers relevant to the trust path under consideration. Users in other scenarios may require other resources and services. Surprisingly, locating these resources and services remains a largely unsolved problem in real-world X.509 PKI deployment. This paper presents the design and prototype of a new and flexible solution for automatic discovery of the services and data repositories are available from a Certificate Service Provider (CSP).
Tags: Security Tools |
|||
|
Electric Bill Presentment and Payment - The Gateway to One-on-one Customer Relationships | 2007-07-07 | Personix |
| The benefi ts of electronic bill presentment and payment (EBPP) are undeniable. Although its promises have been promoted for a decade, it has fi nally reached critical mass in the market with the number of electronic bill payments surpassing checks in 2006. However, the technical and financial effort required for a biller to implement an in-house EBPP solution can be both challenging and expensive.
Tags: |
|||
|
The Directory-Enabled PKI Appliance: Digital Signatures Made Simple, Approach and Real World Experience | 2007-02-28 | ARX |
| This paper presents a novel approach for a PKI based digital signature system for documents in an enterprise setting. A centralized appliance securely stores users' private signing keys. The appliance interfaces with the existing enterprise directory to automatically provision users' keys and certificates. Users authenticate to the appliance using their existing directory credentials in order to access their signing keys. Client applications send document hash values to the appliance to be signed therefore the signing keys themselves never leave the appliance. Streamlined user interface methods enable easy acceptance by users, while streamlined management enables minimal ongoing investment by IT staff. Real world experience with the described system is presented and shows successful deployment in a variety of organizations and markets.
Tags: Security Tools |
What's important from our sponsors
10 million IT Folks can't be wrong with their server choice.
HP ProLiant ML110 G5
HP ProLiant DL380 G5
HP ProLiant DL385 G5
Sponsored by
Cutting-edge technology from premium sponsors
Oracle Technology Solutions for Midsize Businesses
Oracle's Vision for an Enterprise Performance Management System
Improve employee productivity with an out-of-the-box employee portal
HP ProLiant ML110 G5 from $999
Click here for the reliable server that cost as little as a PC.
DBOptimizer
Discover, Diagnose & Optimise poor performing SQL…Fast!
C++Builder 2009
RAD visual development meets C++ power – download it now!
Compare your IT salary
Sign-up for free download of IT salary benchmark report 2008.
Country Report: India
Technology for national gains
- ZDNet.com |
- ZDNet Japan |
- ZDNet.de |
- CNET UK |
- CNET.de |
- Tech Republic |
- BNET |
- MP3.com |
- activeTechPros |
- ZDNet UK |
- ZDNet Korea |
- ZDNet France |
- CNET Australia |
- CNET France |
- Download.com |
- Builder |
- GameSpot
- ZDNet Australia |
- ZDNet Taiwan |
- CNET |
- CNET Taiwan |
- News.com |
- Silicon.com |
- TV.com |
- GameSpot Korea
News |
Insight |
Reviews |
TechGuides |
Jobs |
Blogs |
Videos |
Community |
Downloads |
IT Library |
Copyright © 2008 CNET Networks, Inc., a CBS Company. All rights reserved. Privacy Policy.
