O'Reilly logo

Inside Windows® Server 2003 by William Boswell

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Key Archival and Recovery

Any front desk clerk at a hotel will tell you that people cannot be totally trusted with keys. They get lost, washed, ironed, or simply left on the wrong side of a door with an automatic lock.

Providing a central repository for replacement keys is a tricky proposition. If this repository were to be compromised, the entire PKI would be useless. Worse than useless, actually, because it may still seem to be reliable as the bad guys plunder the encrypted files and email messages.

Still, the ability to maintain continued access to data in the face of user neglect or mistake makes a secure key repository a highly attractive feature. Standard PKI has defined such a creature. It is called a Registration Authority, or RA. For ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required