Chapter 5. Generic PKI Designs

This chapter covers the following topics:

Basic Design with Flat CA Architecture

Hierarchical Architecture

Hierarchical Architecture Without Chaining

Hierarchical Architecture with Chaining

Two baseline architectures are available for enterprises. A basic, flat architecture is best suited for small enterprises. Larger enterprises are best served with a hierarchical model, which offers two approaches: one based on certificate chaining, which helps define the flows of trust in the network, and the second based on standard certificate authentication.

Different deployments within enterprises have different requirements. The requirement drivers can be defined by organizational lines, regulatory lines, technical ...

Get PKI Uncovered: Certificate-Based Security Solutions for Next-Generation Networks now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.