Chapter 5. Generic PKI Designs
This chapter covers the following topics:
• Basic Design with Flat CA Architecture
• Hierarchical Architecture Without Chaining
• Hierarchical Architecture with Chaining
Two baseline architectures are available for enterprises. A basic, flat architecture is best suited for small enterprises. Larger enterprises are best served with a hierarchical model, which offers two approaches: one based on certificate chaining, which helps define the flows of trust in the network, and the second based on standard certificate authentication.
Different deployments within enterprises have different requirements. The requirement drivers can be defined by organizational lines, regulatory lines, technical ...
Get PKI Uncovered: Certificate-Based Security Solutions for Next-Generation Networks now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
