Chapter 9. Securing a CA Hierarchy

A certification authority (CA) hierarchy is only as secure as the security measures that an organization takes to protect the CAs in the hierarchy. These measures can be categorized as:

CA Configuration Measures
Designing Physical Security Measures

These measures can range from limiting which security groups can log on locally at the CA console to locating the CA computer in a secured location. Your security plan must include measures to protect each CA’s private key from compromise.

CA Configuration Measures

CA configuration measures refer to the security measures involving the configuration of Certificate Services or the configuration of the Windows Server 2008 operating system.

Measures you can take to configure ...

Get Windows Server® 2008 PKI and Certificate Security now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Windows Server® 2008 PKI and Certificate Security by Brian Komar

Chapter 9. Securing a CA Hierarchy

CA Configuration Measures

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly