Presentation is loading. Please wait.

Presentation is loading. Please wait.

What is EKMI? Enterprise Key Management Infrastructure Take the tour.

Published byJune Lang Modified over 8 years ago

Similar presentations

Presentation on theme: "What is EKMI? Enterprise Key Management Infrastructure Take the tour."— Presentation transcript:

1 What is EKMI? Enterprise Key Management Infrastructure Take the tour

2 Enterprise Key Management Infrastructure or EKMI is a collection of technology, policies, and procedures for managing all cryptographic keys in the enterprise.

3 EKMI is: A Single place to manage all keys A Standard Protocol Platform and Application Independent Scalable to millions of clients Always available, even during network failure...and of course, extremely secure

4 EKMI is comprised of: Public Key Infrastructure, or PKI This is used for digital certificate management, strong-autentication, secure storage, and transport of symmetric encryption keys Symetric Key Management System, or SKMS PKI SKS Server - for symmetric key management SKCL - for client interactions with SKS Server +SKMS=EKMI

5 Lets See How This All Works Together...

6 SKCL Application Client Client Application makes a request for a symmetric key SKCL makes a digitally signed request to the SKS Network Server SKS verifies SKCL request, generates, encrypts, digitally signs & escrows Key in the Database Application Server DB Server Crypto Module Crypto HSM provides security for RSA Signing & Encryption Keys of SKS SKS responds to SKCL with a signed and encrypted symmetric key SKCL verifies response, decrypts key and hands it to the Client Application

7 What does this mean in practical application... Since the Keys are generated and “Leased” at the application level, data remains encrypted and secure, not only at rest on the server, but also through transit.

8 The Financial Solution ATM Bank Teller Point of Sale Bank Branch Retail Network Financial Institution SKS Server Central Database Information can now be sent encrypted securely over standard lines, and be decrypted at the application level.

9 The Helthcare Solution Records Doctors Office EMT Network Hospital SKS Server ER Application and Database Patient Information can be shared securely and quickly for efficient care. Doctors Tablet EMT in Field Patient Registration ER Nurse

10 Solutions to Symmetric Key Barriers SlowMulti-Core PCs ComplexHigher Level APIs Design Standards Education Expensive Open Source Lack of Standards OASIS EKMI-TC

11 But its not too late! Securing the Core should have been Plan A from the beginning.

12 OASIS EKMI-TC is driving new key-management standards that cuts across platforms, applications and industries. Get involved!

Download ppt "What is EKMI? Enterprise Key Management Infrastructure Take the tour."

Similar presentations

1 Key Exchange Solutions Diffie-Hellman Protocol Needham Schroeder Protocol X.509 Certification.

1 Key Exchange Solutions Diffie-Hellman Protocol Needham Schroeder Protocol X.509 Certification.
Meganet Corporation VME Office 2004. Meganet Corporation Meganet Corporation is a leading worldwide provider of data security to Governments, Military,

Meganet Corporation VME Office Meganet Corporation Meganet Corporation is a leading worldwide provider of data security to Governments, Military,
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Introduction to z/OS Security Lesson 4: There’s more to it than RACF

Introduction to z/OS Security Lesson 4: There’s more to it than RACF
Cryptography Chapter 7 Part 4 Pages 833 to 874. PKI Public Key Infrastructure Framework for Public Key Cryptography and for Secret key exchange.

Cryptography Chapter 7 Part 4 Pages 833 to 874. PKI Public Key Infrastructure Framework for Public Key Cryptography and for Secret key exchange.
Surendra Shetty President & Deputy Chief Information Officer, YES BANK YES Sahaj Ultra low - cost mobile banking kit.

Surendra Shetty President & Deputy Chief Information Officer, YES BANK YES Sahaj Ultra low - cost mobile banking kit.
SSL CS772 Fall 2011. Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.

SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.
Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.

Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.
The OASIS IDtrust (I M The OASIS IDtrust (Identity and Trusted Infrastructure ) Member Section For more information please see:

The OASIS IDtrust (I M The OASIS IDtrust (Identity and Trusted Infrastructure ) Member Section For more information please see:
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
Enterprise Key Management Infrastructures: Understanding them before auditing them Arshad Noor CTO, StrongAuth, Inc. Chair, OASIS EKMI-TC.

Enterprise Key Management Infrastructures: Understanding them before auditing them Arshad Noor CTO, StrongAuth, Inc. Chair, OASIS EKMI-TC.
Meganet Corporation VME Mail 2004. Meganet Corporation Meganet Corporation is a leading worldwide provider of data security to Governments, Military,

Meganet Corporation VME Mail Meganet Corporation Meganet Corporation is a leading worldwide provider of data security to Governments, Military,
WAP Public Key Infrastructure CSCI 5939.02 – Independent Study Fall 2002 Jaleel Syed Presentation No 5.

WAP Public Key Infrastructure CSCI – Independent Study Fall 2002 Jaleel Syed Presentation No 5.
Chapter 9: Using and Managing Keys Security+ Guide to Network Security Fundamentals Second Edition.

Chapter 9: Using and Managing Keys Security+ Guide to Network Security Fundamentals Second Edition.
Enterprise Key Management Infrastructure (EKMI) Arshad Noor CTO, StrongAuth, Inc. Chair, EKMI TC – OASIS

Enterprise Key Management Infrastructure (EKMI) Arshad Noor CTO, StrongAuth, Inc. Chair, EKMI TC – OASIS
Enterprise Key Management Infrastructure: Understanding them before auditing them Arshad Noor CTO, StrongAuth, Inc. Chair, OASIS EKMI-TC.

Enterprise Key Management Infrastructure: Understanding them before auditing them Arshad Noor CTO, StrongAuth, Inc. Chair, OASIS EKMI-TC.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.

Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.
Securing Data Storage Protecting Data at Rest Advanced Systems Group Dell Computer Asia Ltd.

Securing Data Storage Protecting Data at Rest Advanced Systems Group Dell Computer Asia Ltd.
TCP/IP Protocol Suite 1 Chapter 28 Upon completion you will be able to: Security Differentiate between two categories of cryptography schemes Understand.

TCP/IP Protocol Suite 1 Chapter 28 Upon completion you will be able to: Security Differentiate between two categories of cryptography schemes Understand.

Similar presentations

Ads by Google