O'Reilly logo

Security without Obscurity by W. Clay Epstein, Jeff Stapleton

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 4

PKI Management and Security

In Chapter 1, “Introduction,” we mentioned that this book addresses public key infrastructure policies, standards, practices, and procedures. We also discussed industry standards organizations, including ANSI, IETF, ISO, NIST, RSA Labs, W3C, and X9 who have all published PKI-related standards. While some businesses rely entirely on industry standards, others feel compelled to develop and maintain their own internal standards. Regardless whether a business depends on external standards, internal standards, or both, standards play a special role between policies and practices.

Policy statements are basically high-level requirements, essentially goals that define “what” needs to be achieved. Practices are fundamentally ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required