PKI - IT Library : ZDNet Asia

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

Why Strong Authentication? - The Security and Administrative Benefits of Using X.509 PKI Based Strong Authentication 2007-01-01 Isode

Strong authentication based on X.509 PKI (Public Key Infrastructure) is available in a number of protocols and provides both security & administrative benefits and drawbacks. This paper looks at the security and administrative benefits (and draw backs) of using strong authentication as well as the generic issues that apply to many applications and protocols using strong authentication. Future white papers will look at specific applications of strong authentication. This paper shows that, in many situations, there are significant security and administrative benefits to using strong authentication. These benefits are behind Isode's drive to add strong authentication capabilities to many parts of the Isode product set.

Tags: Authentication - Encryption, Security Administration

Easy Setup of Strong Authentication 2007-01-01 Isode

In order to gain the overall administrative "Win" by choosing strong authentication, it is critical to make the setup of keys and certificates very easy, which in turn leads to the requirement on making Certification Authority interaction easy. This paper looks at how to achieve this goal, and Isode's approach to the problem.

Federated Identity, Distributed PKI and Smart Cards 2007-01-01 Isode

This paper considers authentication systems based on smart cards, where the smart cards will be issued by many organizations, and authentication must work at any location. An important example of this type of deployment is the US Government planned deployment in support of HSPD (Homeland Security Presidential Directive) 12. Federated Identity schemes have been proposed to support HSPD-12. This paper first looks at systems where federated identity approaches are appropriate. It then considers smart card based deployments, and looks at requirements and solutions to support them. It describes why use of a distributed PKI is generally superior to a federated identity approach.

Tags: Security Administration, Authentication - Encryption

Proposal of Constructing PKI on Overlay Network 2006-12-16 Nara Institute of Science and Technology

This paper presents the design of foundation PKI (fPKI), a PKI system constructed on an overlay network for an open source community. fPKI can provide an alternative PKI system to the current server-client PKI system. The Certificate Authority (CA) system of the fPKI is composed of the reputation of each committer, which has been assessed by the SecureEigenTrust algorithm. fPKI inherits the scalability of SecureEigenTrust, and also inherits the common CA usage of the server-client PKI system.

Diffie-Hellman Key Exchange -- A Non-Mathematician's Explanation 2006-12-18 13:20:17 Global Knowledge Network

The Diffie-Hellman algorithm is one of the most common protocols used in networking today. An understanding of its underlying protocols and processes helps a great deal when trouble-shooting a system. This white paper takes a simple approach to explaining the DH process.

Tags: Authentication - Encryption

Enterprise Email Encryption Buyers Guide 2006-03-15 PGP

This PGP White Paper provide a comprehensive understanding of the factors organisations must consider when designing, implementing, managing, and procuring encryption solutions for enterprise email systems. PGP Corporation's award-winning enterprise encryption products provide the reference solution for this guide.

Tags: Internet and Web, Security Administration

Windows Server 2003 Security Cookbook: Public Key Infrastructure and Certificates 2006-02-10 O'Reilly Media

Public Key Infrastructure (PKI) and Certification Authorities (CA) have become very popular IT artifacts. They can be used for a multitude of purposes including identity assertion, encryption, and digital signatures. They're actually relatively easy to set up and very easy to maintain. However, before jumping into the recipes, the user should understand some of the basic concepts and terminology of PKI.

Tags: Server Platforms - OS, Authentication - Encryption

PKI Interoperability by an Independent, Trusted Validation Authority 2006-02-02 Det Norske Veritas

Interoperability between PKIs (Public Key Infrastructure) is a major issue in several electronic commerce scenarios. This paper suggests an approach based on a trust model where an independent Validation Authority (VA) replaces Certification Authorities (CA) as the trust anchor for the receiver of a PKI certificate (the Relying Party, RP). By trusting the VA, the RP is able to trust all CAs that the VA can answer for. The main issue is not technical validation of the certificates but assessment of quality, trustworthiness and risk related to certificate acceptance. The RP obtains a one-stop shopping service - one point of trust, one agreement, one bill, one liable actor, which may be beneficial for some business processes.

Tags: Security Administration

On-Demand Webcast: Risk Compartmentalization as a Security Strategy 2006-02-01 Apani Networks

Learn how to cost effectively implement risk compartmentalization strategies to enhance security inside the network perimeter. Enterprises today are trying to address the threat of a of zero-day attack. Approaches to this challenge include:

Build stronger barriers around sensitive data by setting up security zones throughout the network

Implement intrusion detection and prevention defenses

Initiate access control programs to limit unauthorized activity

Up until now, the choices that were available on how to segment the network into distinct systems has been quite challenging, especially for large scale deployments.

Learn how a software approach to this challenge provides an easier solution that is scalable, flexible and can reduce your overall cost of security.

Presenter:
Andreas M. Antonopoulos is a Senior Vice President and Founding Partner with Nemertes Research, where he develops and manages research projects, conducts strategic seminars and advises key clients. Andreas is a computer scientist and a Certified Information Systems Security Professional (CISSP) with an engineering, programming and consulting background.

Tags: Data Infrastructure, Intrusion - Tampering, Intrusion - Tampering, Intrusion - Tampering, Authentication - Encryption, Security Administration, Authentication - Encryption, Security Administration, Data Infrastructure, Data Tools, Data Tools, IT Budgeting, IT Budgeting, Intrusion - Tampering, Intrusion - Tampering, Security Administration, Intrusion - Tampering

S/MIME Support Package: Release 4.0 2005-12-21 Research In Motion

The S/MIME Support Package is designed to enable BlackBerry device users who are already sending and receiving Secure Multipurpose Internet Mail Extensions (S/MIME) protected messages using their desktop email program to send and receive S/MIME protected messages using their BlackBerry devices. The S/MIME Support Package is designed to work with S/MIME email clients including Microsoft Outlook and Microsoft Outlook Express, and with popular Public Key Infrastructure (PKI) components including Netscape, Entrust Authority Security Manager version 5 and later, and Microsoft Certificate Authorities (CAs). This paper describes the S/MIME Support Package, which is designed to offer extended security features for BlackBerry devices.

Tags: Internet and Web, Software Development Tools

Jump to 1 2 3 4 5 6 7 [8] 9 10

Title	Date Added	Company
Why Strong Authentication? - The Security and Administrative Benefits of Using X.509 PKI Based Strong Authentication	2007-01-01	Isode
Strong authentication based on X.509 PKI (Public Key Infrastructure) is available in a number of protocols and provides both security & administrative benefits and drawbacks. This paper looks at the security and administrative benefits (and draw backs) of using strong authentication as well as the generic issues that apply to many applications and protocols using strong authentication. Future white papers will look at specific applications of strong authentication. This paper shows that, in many situations, there are significant security and administrative benefits to using strong authentication. These benefits are behind Isode's drive to add strong authentication capabilities to many parts of the Isode product set. Tags: Authentication - Encryption, Security Administration
Easy Setup of Strong Authentication	2007-01-01	Isode
In order to gain the overall administrative "Win" by choosing strong authentication, it is critical to make the setup of keys and certificates very easy, which in turn leads to the requirement on making Certification Authority interaction easy. This paper looks at how to achieve this goal, and Isode's approach to the problem.
Federated Identity, Distributed PKI and Smart Cards	2007-01-01	Isode
This paper considers authentication systems based on smart cards, where the smart cards will be issued by many organizations, and authentication must work at any location. An important example of this type of deployment is the US Government planned deployment in support of HSPD (Homeland Security Presidential Directive) 12. Federated Identity schemes have been proposed to support HSPD-12. This paper first looks at systems where federated identity approaches are appropriate. It then considers smart card based deployments, and looks at requirements and solutions to support them. It describes why use of a distributed PKI is generally superior to a federated identity approach. Tags: Security Administration, Authentication - Encryption
Proposal of Constructing PKI on Overlay Network	2006-12-16	Nara Institute of Science and Technology
This paper presents the design of foundation PKI (fPKI), a PKI system constructed on an overlay network for an open source community. fPKI can provide an alternative PKI system to the current server-client PKI system. The Certificate Authority (CA) system of the fPKI is composed of the reputation of each committer, which has been assessed by the SecureEigenTrust algorithm. fPKI inherits the scalability of SecureEigenTrust, and also inherits the common CA usage of the server-client PKI system.
Diffie-Hellman Key Exchange -- A Non-Mathematician's Explanation	2006-12-18 13:20:17	Global Knowledge Network
The Diffie-Hellman algorithm is one of the most common protocols used in networking today. An understanding of its underlying protocols and processes helps a great deal when trouble-shooting a system. This white paper takes a simple approach to explaining the DH process. Tags: Authentication - Encryption
Enterprise Email Encryption Buyers Guide	2006-03-15	PGP
This PGP White Paper provide a comprehensive understanding of the factors organisations must consider when designing, implementing, managing, and procuring encryption solutions for enterprise email systems. PGP Corporation's award-winning enterprise encryption products provide the reference solution for this guide. Tags: Internet and Web, Security Administration
Windows Server 2003 Security Cookbook: Public Key Infrastructure and Certificates	2006-02-10	O'Reilly Media
Public Key Infrastructure (PKI) and Certification Authorities (CA) have become very popular IT artifacts. They can be used for a multitude of purposes including identity assertion, encryption, and digital signatures. They're actually relatively easy to set up and very easy to maintain. However, before jumping into the recipes, the user should understand some of the basic concepts and terminology of PKI. Tags: Server Platforms - OS, Authentication - Encryption
PKI Interoperability by an Independent, Trusted Validation Authority	2006-02-02	Det Norske Veritas
Interoperability between PKIs (Public Key Infrastructure) is a major issue in several electronic commerce scenarios. This paper suggests an approach based on a trust model where an independent Validation Authority (VA) replaces Certification Authorities (CA) as the trust anchor for the receiver of a PKI certificate (the Relying Party, RP). By trusting the VA, the RP is able to trust all CAs that the VA can answer for. The main issue is not technical validation of the certificates but assessment of quality, trustworthiness and risk related to certificate acceptance. The RP obtains a one-stop shopping service - one point of trust, one agreement, one bill, one liable actor, which may be beneficial for some business processes. Tags: Security Administration
On-Demand Webcast: Risk Compartmentalization as a Security Strategy	2006-02-01	Apani Networks
Learn how to cost effectively implement risk compartmentalization strategies to enhance security inside the network perimeter. Enterprises today are trying to address the threat of a of zero-day attack. Approaches to this challenge include: Build stronger barriers around sensitive data by setting up security zones throughout the network Implement intrusion detection and prevention defenses Initiate access control programs to limit unauthorized activity Up until now, the choices that were available on how to segment the network into distinct systems has been quite challenging, especially for large scale deployments. Learn how a software approach to this challenge provides an easier solution that is scalable, flexible and can reduce your overall cost of security. Presenter: Andreas M. Antonopoulos is a Senior Vice President and Founding Partner with Nemertes Research, where he develops and manages research projects, conducts strategic seminars and advises key clients. Andreas is a computer scientist and a Certified Information Systems Security Professional (CISSP) with an engineering, programming and consulting background. Tags: Data Infrastructure, Intrusion - Tampering, Intrusion - Tampering, Intrusion - Tampering, Authentication - Encryption, Security Administration, Authentication - Encryption, Security Administration, Data Infrastructure, Data Tools, Data Tools, IT Budgeting, IT Budgeting, Intrusion - Tampering, Intrusion - Tampering, Security Administration, Intrusion - Tampering
S/MIME Support Package: Release 4.0	2005-12-21	Research In Motion
The S/MIME Support Package is designed to enable BlackBerry device users who are already sending and receiving Secure Multipurpose Internet Mail Extensions (S/MIME) protected messages using their desktop email program to send and receive S/MIME protected messages using their BlackBerry devices. The S/MIME Support Package is designed to work with S/MIME email clients including Microsoft Outlook and Microsoft Outlook Express, and with popular Public Key Infrastructure (PKI) components including Netscape, Entrust Authority Security Manager version 5 and later, and Microsoft Certificate Authorities (CAs). This paper describes the S/MIME Support Package, which is designed to offer extended security features for BlackBerry devices. Tags: Internet and Web, Software Development Tools

Cutting-edge technology from premium sponsors

Adaptive Threat Management
High Performance Security for your Distributed Enterprise

Achieve lower TCO, agility, risk mitigation, compliance, and productivity

Webcast series: Cybercrime is a growth industry - is your organisation prepared?
More resources to optimize the security of your enterprise »

Brought to you by:

More Tech Showcases:

Juniper Networks
Hitachi Eco-Products

IDC's Powering the Enterprise Cloud Event 2009

12 Nov - 17 Dec 2009

Grand Copthorne Waterfront Hotel, Singapore

Cloud Computing Summit 2009

9 Dec 2009

Hong Kong Convention and Exhibition Center

4th Annual GovTech 2010

27 - 28 Jan 2010

Amara Hotel, Singapore

ZDNet Asia Top Tech 50 Index

AT&T

Asustek

Canon

Convergys

Ericsson

Hewlett-Packard

Infosys

LogicaCMG

NTT

Samsung

SingTel Group

Toshiba

Xerox

Accenture

Atos Origin

Capgemini

Dell

France Telecom

Hitachi

Intel

Microsoft

Nokia

Satyam Computer Services

Sony

Verizon Communications

ZTE

Alcatel-Lucent

British Telecom

China Mobile

Deutsche Telekom

Fujitsu

Huawei Technologies

LG Electronics

Motorola

Oracle

Seagate Technology

Sun Microsystems

Western Digital

Apple

CSC

Cisco Systems

EMC

Google

IBM

Lenovo Group

NEC

SAP

Siemens IT Solutions & Services

Tata Consultancy Services

Wipro

ZDNet Asia's Top Tech Index will be next updated in 2010.

Overwhelmed by consolidation? Take it in steps.
Learn the 5 steps to data center consolidation - download the whitepaper now.

Choose a career with Accenture in Singapore
A dynamic job opportunity where technology and business intersect

Choose a career with Accenture in Malaysia
A dynamic job opportunity where technology and business intersect

Improving the Security & Management of Active Directory:
See a live demonstration of NetIQ DRA now

The Roots for a Greener World
Discover Hitachi's Environmental Vision 2025 and featured Eco-Products

The Desktop Virtualization Revolution is here!
Find our more with Citrix Simplicity is Power

Master in Organisational Leadership
Part-time masters program from Monash University. Find out more.

Lack of visibility into network issues and performance?
Find out today. Download SolarWinds FREE 30-Day Trial Software here.

IT Salary & Skills Report 2009
Join activeTechPros for free access to the report

More from CBS Interactive

CBS Interactive Inc Sites

About ZDNet Asia |

About CBS Interactive |

ZDNet Asia editorial calendar |

Advertise with us |

Jobs |

Partnership |

Contact Us |

CNET Direct |

CNET Asia |

CNET Asia mobile |

Sitemap

ZDNet.com |

ZDNet Japan |

ZDNet.de |

CNET UK |

CNET.de |

Tech Republic |

BNET |

MP3.com |

activeTechPros |

ZDNet UK |

ZDNet Korea |

ZDNet France |

CNET Australia |

CNET France |

Download.com |

Builder |

GameSpot

ZDNet Australia |

ZDNet Taiwan |

CNET |

CNET Taiwan |

News.com |

Silicon.com |

TV.com |

GameSpot Korea

News | Insight | Reviews | TechGuides | Jobs | Blogs | Videos | Community | Downloads | IT Library |

Get RSS feeds

Security

Featured Whitepapers

Member Login

Adaptive Threat Management

ZDNet Asia Top Tech 50 Index