PKI Blog

Andrew Prayner

Andrew Prayner

Recent Posts

Who’s Watching Your Public Key Infrastructure (PKI)?

Posted by Andrew Prayner on Oct 6, 2017 10:28:43 AM

If you're not watching your PKI...who is?

 As ominous as the title sounds, this blog will actually focus on the parties that should have eyes on your public key infrastructure (PKI), rather than the “bad actors” who shouldn’t.  The latter is no less important, however, and that could easily be the topic of a future blog.

Read More

Topics: Managed PKI, Public Key Infrastructure, PKI, DIY PKI

Policy, Implementation, Change and Problem Management for PKI

Posted by Andrew Prayner on Jun 8, 2015 8:48:30 AM

A Public Key Infrastructure (PKI) is a set of hardware, software, people, policies and procedures needed to create, manage, distribute, store and revoke digital certificates and manage public key encryption. It is often said (especially within the consultant community) that PKI implementations follow the 80/20 rule… 80% planning and 20% execution. This concept cannot be overstated. But it’s most often applied to those PKI specific, cryptography-related decision points such as namespaces, key lengths, signature hash algorithms and so forth. These are critical, to be sure… and difficult, if not impossible, to change after the fact. But equally important – especially in the medium to large enterprise space – are the non-technical, organizational aspects of PKI. This blog post will focus on the organizations within the enterprise that are PKI stakeholders, whether they know it or not, and their touch points that can be leveraged toward an optimal deployment, and thus ultimately an optimal ROI.

Read More

Topics: digital certificate management, Public Key Infrastructure (PKI)

Recent Posts

Posts by Topic

see all

Subscribe to Email Updates

Want to Learn more about CSS?