1 / 7

oasis-open

www.oasis-open.org. PKIA Goals for 2007 Stephen Wilson Chair, PKI Adoption Technical Committee Managing Director, Lockstep, Australia. The PKI environment c. 2006. PKI is resurgent Embedded PKI commonplace Certificates now about relationships than “identity”

ayla
Download Presentation

oasis-open

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. www.oasis-open.org PKIA Goals for 2007Stephen Wilson Chair, PKI Adoption Technical Committee Managing Director, Lockstep, Australia

  2. The PKI environment c. 2006 • PKI is resurgent • Embedded PKI commonplace • Certificates now about relationshipsthan “identity” • Midst of paradigm shift to identity plurality • APKI becoming application specific, not general purpose

  3. Resurgent, embedded PKI • Closed schemes • US PIV, Identrus, ICAO e-passports, CableLabs, Skype, BankID (Sweden) • National ID • Hong Kong, Malaysia, Estonia, Belgium, Thailand … • Health smartcards • France, Germany, Taiwan, Italy, Austria, Australia … • Digital Credentials • US Patent Office, France, Taiwan, Australia …

  4. Identity plurality • Cardspace • Stephen Kent’s critique: • For big CAs, there is an implicit assumption that a single cert is all that a user should need. This assumes that one identity is sufficient for all applications, which contradicts experience

  5. The top five obstacles According to OASIS Surveys 1 & 2: 1. Software applications don’t support PKI 2. Costs too high 3. PKI poorly understood 4. Too much focus on technology (not need) 5. Poor interoperability

  6. PKI TC previous subcommittees • Application Guidelines SC • Interoperability SC • Ask vendors SC • Education SC • Website, resources page • ROI Guidelines • Lower costs SC • Third survey

  7. PKI Adoption: Fresh objectives • Continue to overcome obstacles with targeted practical initiativesthat improve understanding of PKI • Re-vitalise and complete the Third International Survey • Disseminate case studies • Modernise the PKI message so it reflects real needs • De-mystify legal, governance and interoperability issues • Liaise more closely with other OASIS efforts

More Related