Design and Implementation of a Key-Lifecycle Management System

نویسندگان

  • Mathias Björkqvist
  • Christian Cachin
  • Robert Haas
  • Xiao-Yu Hu
  • Anil Kurmus
  • René Pawlitzek
  • Marko Vukolic
چکیده

Key management is the Achilles’ heel of cryptography. This work presents a novel Key-Lifecycle Management System (KLMS), which addresses two issues that have not been addressed comprehensively so far. First, KLMS introduces a pattern-based method to simplify and to automate the deployment task for keys and certificates, i.e., the task of associating them with endpoints that use them. Currently, the best practice is often a manual process, which does not scale and suffers from human error. Our approach eliminates these problems and specifically takes into account the lifecycle of keys and certificates. The result is a centralized, scalable system, addressing the current demand for automation of key management. Second, KLMS provides a novel form of strict access control to keys and realizes the first cryptographically sound and secure access-control policy for a key-management interface. Strict access control takes into account the cryptographic semantics of certain key-management operations (such as key wrapping and key derivation) to prevent attacks through the interface, which plagued earlier key-management interfaces with less sophisticated access control. Moreover, KLMS addresses the needs of a variety of different applications and endpoints, and includes an interface to the Key Management Interoperability Protocol (KMIP) that is currently under standardization.

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

System Engineering Implementation Process for Super-Systems

System engineering is one of the most powerful tools for comprehensive project management and control. This tool emphasized the life cycle of the projects, manages every single activity and helps manage the main elements of the project through a set of management and engineering processes. The goal of the current study is to use a system engineering approach in design phase in order or to meet ...

متن کامل

Identifying and Prioritizing the Key Factors of ERP System Implementation in Chaharmahal and Bakhtiari Saderat Bank using Theme Analysis Method and Fuzzy Dematel

The purpose of this study was to identify the key factors in implementing the organization's resource planning system in Chaharmahal and Bakhtiari Saderat Bank using theme analysis method. This research was a type of qualitative research that was done in an applied way. The research population consists of 15 experts and specialist in system implementation, resource planning in Chaharmahal and B...

متن کامل

Changes in key performance indicators of Shafa academic hospital in Kerman after the implementation of the accreditation program during the years of 2007 to 2018

Introduction: Improving the effectiveness of hospital activities in order to improve the quality of services and performance is essential. One of the important tools in evaluating and improving quality is evaluating performance indicators and implementing an accreditation program in hospitals. This study was conducted to investigate the changes in the performance indicators of Shafa Academic Ho...

متن کامل

Study on Mine-maps Dynamic Management Information System Based on Whole Lifecycle

According to the shortcoming of traditional artificial management mine-maps, the solutions of dynamic management digital mine-maps were proposed. Analyzing of the main tasks and characteristics in lifecycle stages of mining engineering maps, based on the idea and meaning of lifecycle, first we divided mine-maps lifecycle into seven stages, such as design drawing task assignation, design drawing...

متن کامل

Instructional Design, Implementation, and Evaluation of an E-Learning System, an Experience in Tehran University of Medical Sciences

Introduction: Designing e-learning systems based on the principles and prerequisites of teaching and learning theories requires a comprehensive and systematic approach to instructional design procedure. An experience of instructional design, implementation and evaluation of an e-learning system is represented in this study. Methods: In the present action research study, five steps of systemati...

متن کامل

DESIGN AND IMPLEMENTATION OF FUZZY EXPERT SYSTEM FOR REAL ESTATE RECOMMENDATION

<span style="color: #000000; font-family: Tahoma, sans-serif; font-size: 13px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: auto; text-align: justify; text-indent: 0px; text-transform: none; white-space: normal; widows: auto; word-spacing: 0px; -webkit-text-stroke-width: 0px; display: inline !important; float: none; backgro...

متن کامل

ذخیره در منابع من


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

عنوان ژورنال:

دوره   شماره 

صفحات  -

تاریخ انتشار 2010