Information Technology Reference
In-Depth Information
table 9.11 Appli ed iA 2 Summary: pKi
IA 2  Topic
Description
Mechanism
Public key infrastructure (PKI)
Drivers
Implement and enforce a unique, nonrefutable
identification with appropriate personnel and information
technology components. Business need for nonrepudiation
in business transactions, e.g., binding legal agreements via
online exchanges of e-mail or other messages.
IA 2 view
Applicable IA 2 views: People, policy, business process,
systems and applications, information/data, infrastructure
(technical, physical)
IA core principles
Applicable IA core principles:
Confidentiality-integrity-availability (CIA)
Authenticity-utility (AU)
Privacy-authorized use-nonrepudiation (PAN)
Compliance
requirements
Legislative, policy, guidelines, executive order, presidential
directive, or others mentioning PKI
ELCM application
Applicable ELCM elements: Concept, architect, engineer,
develop/acquire, implement, test, deploy, train, O&M, retire
Verification
Formal C&A; formal test plans for PKI features
Operations
Applicable IA operations cycle phases: Anticipate, Defend,
Monitor
supposed to be the only person in possession of that private key, the private key is a
reasonably reliable identity credential, so reasonable that private keys may be used
as digital signatures that are as legally binding as physical signatures. Table 9.11
provides an applied IA 2 summary of PKI.
9.10.1
Applied IA 2 Summary
Figure 9.6 provides a PKI overview in context of the IA 2 views, including business
drivers, policies, business services, technical services, and mechanics. The Meta
View in the diagram provides examples of periphery considerations to PKI that
include activities for PKI operations and use. Once the IA architect decides on the
appropriate PKI mechanics, he or she follows the IA 2 LoS through to vendor/prod-
uct selection and best practices for implementation and O&M.
9.10.1.1  PKI Models (Trust Models)
Business requirements will drive the selection of PKI model. Model choices consist of:
 
Search WWH ::




Custom Search