Chapter 5. Generic PKI Designs

This chapter covers the following topics:

Basic Design with Flat CA Architecture

Hierarchical Architecture

Hierarchical Architecture Without Chaining

Hierarchical Architecture with Chaining

Two baseline architectures are available for enterprises. A basic, flat architecture is best suited for small enterprises. Larger enterprises are best served with a hierarchical model, which offers two approaches: one based on certificate chaining, which helps define the flows of trust in the network, and the second based on standard certificate authentication.

Different deployments within enterprises have different requirements. The requirement drivers can be defined by organizational lines, regulatory lines, technical ...

Get PKI Uncovered: Certificate-Based Security Solutions for Next-Generation Networks now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.