Installation, Configuration and Operational Testing of a PKI Certificate Server and Its Supporting Services

Abstract

Public key infrastructure (PKI) was created to provide the basic services of confidentiality, authenticity, integrity and non-repudiation for sensitive information that may traverse public (un-trusted) networks. This thesis provides a brief description of the background and functional components of a PKI, and then "builds" a PKI to be used for research at the Naval Postgraduate School (NPS). Deficiencies of this PKI with respect to DoD PKI policy are delineated. The thesis addresses details of software selection, installation, configuration and operation, using Netscape's Certificate Management System as its Certificate Authority application of choice. The functionality of this PKI was validated by testing all major certificate life-cycle events (creation, archival, revocation, validation, etc.) All but two of these tests were successful key escrow and revocation checking and thus these two remaining to be addressed by further work to make the NPS PKI fully functional.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jun 01, 2004
Accession Number
ADA424677

Entities

People

  • Amanda M. Kelly
  • Vanessa P. Ambers

Organizations

  • Naval Postgraduate School

Tags

Communities of Interest

  • Cyber
  • Space

DTIC Thesaurus Topics

  • Application Protocols
  • Authentication
  • Computer Network Security
  • Computer Programming
  • Computers
  • Cryptography
  • Cybersecurity
  • Electronic Mail
  • Graphical User Interface
  • Information Systems
  • Information Warfare
  • Internet
  • Life Cycles
  • Operating Systems
  • Secure Communications
  • United States
  • Web Browsers

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Systems Analysis and Design