Loading [MathJax]/jax/output/HTML-CSS/fonts/TeX/fontdata.js

We have detected that Javascript is not enabled in your browser. The dynamic nature of our site means that Javascript must be enabled to function properly. Please read our terms and conditions for more information.

Next up

Crypto U10 (part 1), Key Management & Lifecycle

jjanesko

Crypto U10 (part 2), Key Management and Lifecycle

Description

IYM002 (Unit 10 - Key Mgt Lifecycle) Mind Map on Crypto U10 (part 2), Key Management and Lifecycle, created by jjanesko on 27/04/2013.

Mind Map by jjanesko, updated more than 1 year ago

	Created by jjanesko about 12 years ago

123

10

(0)

Resource summary

Crypto U10 (part 2), Key Management and Lifecycle

lifecycle (continued)
1. key usage
  1. principle of key separation
    1. cryptographic keys must only be used for their intended purpose
    2. enforcing
      1. hardware based
      2. key tagging
        add information to key to indicate purpose
      3. key blocks
        format key to also contain data related to the key
  2. key change
    1. planned vs. unplanned
    2. sometimes it's better to withdraw key
    3. can be expensive
    4. symmetric keys can be replaced relatively easily
    5. public key pairs
      1. private keys can be replaced relatively easily
      2. public keys are more challenging because they are distributed to many people potentially
  3. key activation
    1. process by which keys are authorized for use at any given time
      1. ex. I enter a passphrase and that activates a key for use
  4. key destruction
    1. when?
      1. at key expiration
      2. when key is withdrawn before expiry
      3. at the end of a period of key archival
    2. deleting is not enough
      1. use data erasure or data sanitisation mechanims
governing key managment
1. guidance
  1. policy
    1. define overall requirements and strategy for key management
  2. practice
    1. Define tactics that will be used in order to achieve the key management policy goals.
  3. procedure
    1. Document step-by-step tasks necessary to implement the key management practices.

Show full summary Hide full summary

0 comments

There are no comments, be the first and leave one below:

To join the discussion, please sign up for a new account or log in with your existing account.

Want to create your own Mind Maps for free with GoConqr? Learn more.

Similar

Crypto U4, Block Cipher, Cipher Feedback Mode (CFB)

jjanesko

Crypto U4, Block Cipher, Cipher Block Chaining Mode (CBC)

jjanesko

Crypto U1, Basic Principles

jjanesko

Crypto U3, Theoretical vs. Practical Security

jjanesko

Crypto U4, Stream Cipher

jjanesko

Crypto U4, Block Cipher, Electronic Codebook Mode (ECB)

jjanesko

Crypto U4, Block Cipher, Counter Mode

jjanesko

Crypto U2, Crypto design principles

jjanesko

Crypto U8, example dynamic password scheme

jjanesko

Crypto U8 (part 3), entity authentication

jjanesko