© The Author(s), under exclusive license to APress Media, LLC, part of Springer Nature 2022
L. E. HughesPro Active Directory Certificate Serviceshttps://doi.org/10.1007/978-1-4842-7486-6_8

8. Key Management

Lawrence E. Hughes1  
(1)
Frisco, TX, USA
 

Symmetric Key Management

Symmetric keys are very good for bulk encryption but are difficult to manage and exchange if only symmetric key cryptography is available. In real-world systems, symmetric keys are typically “use once and throw away.” You create a new random symmetric key for each S/MIME email message or for each connection with TLS. Once you are finished with a particular symmetric session key, you destroy it. In fact, with TLS, a new session key is generated and exchanged periodically since the ...

Get Pro Active Directory Certificate Services: Creating and Managing Digital Certificates for Use in Microsoft Networks now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial