Description
|
Created by Bhagya Prasad
almost 11 years ago
|
|
Page 1
Trusted Third Party Generationtrusted third party generates the key pairtrusted party submits the key pair to the CA to generate the public keydisadvantages :1. owner does not generate the public key pair2. owner does not distribute the private key3. owner trusts the third party for key generation and distribution
Combined Generationowner generates the public key pairowner submits the key pair to the CA to generate the public keyadvantagesowner has full controlprivate key can be locally generated & stored and may not be distributeddisadvantages:owner has to generate the key pairshas to convince the CA that he is aware of the private key
Self Creationowner generates the key paircertifies the public key
CA-FREE CERTIFICATE MODEL no CA involved owner generates the public key or may not generate relying party to obtain the public key from owner directly relying party at risk
REPUTATION-BASED CERTIFICATE MODEL owner obtains the key from the CA relying party has no relationship with the CA relying party obtains the public key cert from the CA relying party can verify the cert from CA but no assurance of purpose
CLOSED CERTIFICATION MODEL relying party gets the public key certification from the owner's CA application for closed environments single CA is responsible for all managing all public certs
CONNECTED CERTIFICATION MODELrelying party has relationship with trusted third party which has relationship with the owner's CA
Certificate Creation
CERT MANAGEMENT MODELS
Want to create your own Notes for free with GoConqr? Learn more.