Network Security: Private Communication in a Public World, Second Edition

15. PKI (Public Key Infrastructure)

15.1. Introduction

In the early days of the Indian Territory, there were no such things as birth certificates. You being there was certificate enough.

—Will Rogers

A public key infrastructure (PKI) consists of the components necessary to securely distribute public keys. Ideally, it consists of certificates (see §9.7.2 Certification Authorities (CAs)), a repository for retrieving certificates, a method of revoking certificates, and a method of evaluating a chain of certificates from public keys that are known and trusted in advance (trust anchors) to the target name. There have been some public-key-based systems deployed that leave out components such as revocation, or even certificates. Whether such systems ...

Get Network Security: Private Communication in a Public World, Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Network Security: Private Communication in a Public World, Second Edition by Mike Speciner, Radia Perlman, Charlie Kaufman

15. PKI (Public Key Infrastructure)

15.1. Introduction

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly