Public Key Infrastructure

Definition

Public Key Infrastructure

A public key infrastructure (PKI) is a framework established to issue, maintain, distribute and revoke digital certificates.

Components

Registration Authority

Definition

Registration Authority

A registration authority (RA) is the entity of a public key infrastructure where persons and other subjects can apply for certificates.

Link to original

Certificate Authority

Definition

Certificate Authority

A certificate authority (CA) is the entity of a PKI that issues certificates for other subjects.

Link to original

Revocation List

Definition

Certificate Revocation List

A certificate revocation list (CRL) is a list of certificates that have been revoked before their expiration date. It is periodically renewed by the CA.

Revocation is not reversible.

Link to original

Validation Service

Definition

Validation Service

A validation service is a component of a PKI that offers real-time queries for the revocation status of a certificate.

Link to original

Directory Service

Definition

Directory Service

A directory service is a component of a PKI that allows browsing the certificates issued by the PKI.

Link to original

Certificate Policies

Definition

Certificate Policy

A certificate policy is a document that describes the different entities that compose a PKI, their roles, duties, and working principles.

Link to original

Lukas' Notes

Public Key Infrastructure

Definition

Components

Registration Authority

Definition

Certificate Authority

Definition

Revocation List

Definition

Validation Service

Definition

Directory Service

Definition

Certificate Policies

Definition

Graph View

Table of Contents

Backlinks