Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: integrity and mail encryption

From: "Robert Hines" <b.hines () comcast net>
Date: Sat, 5 Nov 2005 10:01:53 -0500
Thanks Andrew,

I haven't read this one yet, I will give it a look, IMO PKI and the use of
Public/Private key pairs helps with Identity management issues as well as
Non-repudiation and Privacy.  For the list ->this is not the Web of Trust
(PGP) I am referring to.

Bob
CISSP

-----Original Message-----
From: Andrew Chong [mailto:andrewjw () singnet com sg] 
Sent: Friday, November 04, 2005 3:09 AM
To: 'Pranav Lal'; security-basics () securityfocus com
Subject: RE: integrity and mail encryption


To cut short the topics of asymmetric key and public key encryption, the
common practice is to have a Certificate Authority (CA) which is a
trusted third-party for Key Management and also for non-repudiation.
One example is the common SSL certificates which are distributed by CA
Verisign, baltimore, entrust etc.
These CA are there to entrust the authenticity of the keys and digital
certificates (look into X.508).

This PKI book is worth to keep.
Rethinking Public Key Infrastructure and Digital Certificates: Building
in Privacy.
http://www.sweetfantasy.biz/prod_details.aspx?AsinSearch=0262024918&type
=heavy&f=xml

Regards,
Andrew Chong, cissp

-----Original Message-----
From: Pranav Lal [mailto:pranav.lal () gmail com] 
Sent: Thursday, November 03, 2005 5:21 AM
To: security-basics () securityfocus com
Subject: RE: integrity and mail encryption


Hi Bob,

How does public key encryption provide                   non-repudiation


Pranav
Previous By Date Next
Previous By Thread Next

Current thread: