Avoiding PKI Cost and Complexity
by Jeff Bardin, The Brave New World of InfoSec
Thu, 2007-11-01 13:24
Topic(s): | | | |
For years we have been struggling with the complexity, cost, long build timeframes and overall general aggravation with trying to build internal PKI infrastructure and become a certificate authority. The pain index for doing so has been very high. Issuing, managing, revoking, reissuing certificates can be a very labor intensive proposition that increases the cost of your operational environment. Special servers with high redundancy and significant security considerations are needed , policies governing how the certificate authorities (CAs) issue, manage and revoke certificates and store keys, digital certificates, root CAs, Policy, CAs, Issuing CAs, different services, policies, templates, lists and repositories as well as keys and applications that are able to use the PKI is required. Highly trained and skilled staff is needed to manage and maintain the environment.  What if I could avoid all this?
When deploying certificates to customers, say in an environment requiring two-factor authentication, users are required to go through a process that can be taxing although only every 1 to 3 years as a norm. Regardless, these certificates, for security reasons are non-exportable and therefore lock the users access to the assigned machine. Ease of use has not been synonymous with PKI rollouts even though the cost of client and server side certificates is relatively low. 
There are solutions in the marketplace. ChosenSecurity recently announced a fully managed service that reduces the cost and complexity of PKI delivering an on demand service for digital credential offerings. I am impressed with their offering, the overall ingenuity they have woven into their products and the ease of use this presents to corporations and users. No longer do you have to manage this effort. Two factor authentication as required by certain regs and standards is now at your fingertips. ChosenSecurity has taken the SaaS model to another level. Much like a Qualys and their Security as a Service model for vulnerability management, ChosenSecurity is offering on demand PKI SaaS that makes it easy!
» read more from Jeff Bardin | post a comment
Ads by TechWords
Post a comment
The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.
* Denotes a required field
VIRTUAL CONFERENCE
Data Center Directions Virtual Conference

Data Center VCAttend this free, 100% online event exploring tools and techniques for making your data center deliver for today and tomorrow.

» Learn more and register here

WEBCAST
IT productivity challenges: Google survey results

GoogleIn this webcast, Google reveals results from a survey of message security and compliance priorities and concerns. Download a free copy of the survey report after registering.

» Watch the Webcast

Sponsored Links

Secure your virtual and physical environments with the same software.

Can Google help you save time and money in your fight against spam?

An Executive Guide to Understanding Hosted Messaging Systems

ITCi White Paper: Challenges and Opportunities of PCI

The PCI Data Security Standard

Hardware-based security. That's IT as it should be.

A Guide to Providing Proactive Protection to Consumer Online Transactions

IT Service Management: Metrics That Matter

White Paper: Learn how to use Adaptec(R) Snap Server(TM) with MOBOTIX IP Network Cameras

White Paper: Use DAM technology when there is a need for granular monitoring.

This whitepaper describes how you can test your Web applications with virtualization

Read The Evolution of Application Security in Online Banking White Paper

Simple, Economical Server Virtualization For Any Size Company

Global Companies' Best Practices for Security and Compliance

Diebold: Frost & Sullivan Global Physical Security Systems Integrator of the Year

Tripwire PCI DSS Solutions: Automated, Continuous Compliance

Gene Kim's Practical Steps to Mitigate Virtualization Security Risks

Eliminate network threats and downtime with Juniper Networks. View demo

Configuration Audit and Control for Virtualized Environments

Webcast: Best practices in application security: How do you stack up?

Webcast: learn results from an annual Google message security survey of 575 global IT professionals

White Paper: Learn more about how you can use compliance as a means of competitive differentiation.

This white paper presents document security strategies and best practices

Compliance: Moving From Mandate to Differentiator White Paper