PKI is failing, say Sun and Microsoft

Peter Judge

10 October 2002 10:00 AM

Tags: public key infrastructure, sun, pki, craig mundie

Microsoft and Sun seem to agree on one thing, and it all has to do with a worldwide network of bodies authenticating digital signatures and certificates.

Public key infrastructure (PKI), which was supposed to use public-key cryptography to set up a worldwide network of bodies authenticating digital signatures and certificates, has failed to take off because it is too complicated.

According to experts speaking at the RSA security conference in Paris, PKIs are simply more heavyweight than users were ready for, and key initiatives had failed to drive it into use.

"There are barriers of cost to PKI," said Craig Mundie, chief technology officer of Microsoft. "In general it will end up viewed as a heavyweight mechanism, compared to lower value mechanisms." He likened the requirement to that for multiple locks, from luggage locks to bank vaults.

"There are two things driving adoption of security techniques: cost and usability. If it is too hard to use or costs too much, users will reject it."

According to Whitfield Diffie, chief security officer of Sun Microsystems, the slow progress of PKI is due to the failure of big projects to promote it. "PKI will take off, but it has slow growth," said Diffie. "Two organisations in the US could have promoted it -- AT&T and the US National Security Agency (NSA). AT&T was broken up, and the NSA was balled up in policy initiatives. No one else has deep enough pockets or the moral authority to get PKI established."

The problem is that PKI is only really valuable when everyone else has it, said Diffie. "When only a few people have it, it is not worth adopting." In the mid-90s, NSA wanted to mandate an extra PCMCIA slot on laptops, said Diffie, which could be dedicated to authenticating users through a token on a PC card. The idea stalled, and no comparable scheme to introduce PKI has emerged.

There are still government-backed projects attempting to push the introduction of PKI. Microsoft is involved (along with Baltimore, RSA and Verisign) in one of these -- the PKI Challenge, a two-year project to test interoperability of PKI, backed by the EU and run by EEMA. Formerly known as the European Electronic Messaging Association, and dating back to previous (failed) government-backed efforts such as X.400 email, EEMA now calls itself the European Forum for Electronic Business.

Peter Judge reported from the RSA Conference in Paris.

Like this article? Click below to send it to your mobile for free!

Talkback 0 comments


Sponsored content

Power Centre - Content from our premier sponsors

Blogs

  • Alex Serpo Will the NSW Govt put Linux in schools?
    The NSW Government's release this week of an expressions of interest tender to give low-cost laptops to every senior public school student in NSW is a big step, but will these systems be Windows or Linux?
  • Array Naked Mac versus protected PC: What wins?
    What's easier to manage — 200 Mac OS X systems without antivirus or 200 Windows systems running a leading antivirus package?
  • Array Dear Telstra: pack up your toys, go home
    Rejecting Telstra's proposal, after all, is the only conclusion Conroy can reach: as someone whose entire philosophy is built around transparency and process, he simply cannot keep Telstra as part of the NBN bidding process anymore.
  • More blogs »

Tags

  1. 449 articles are tagged with 3g
  2. 1182 articles are tagged with apple
  3. 10 articles are tagged with basslink
  4. 162 articles are tagged with blackberry
  5. 1201 articles are tagged with broadband
  6. 60 articles are tagged with careers
  7. 160 articles are tagged with ceo
  8. 106 articles are tagged with chief information officer
  9. 558 articles are tagged with cio
  10. 61 articles are tagged with commander
  11. 118 articles are tagged with conroy
  12. 51 articles are tagged with cuts
  13. 478 articles are tagged with dell
  14. 353 articles are tagged with email
  15. 968 articles are tagged with google
  16. 875 articles are tagged with government
  17. 718 articles are tagged with hp
  18. 149 articles are tagged with iinet
  19. 960 articles are tagged with intel
  20. 112 articles are tagged with internode
  21. 276 articles are tagged with iphone
  22. 248 articles are tagged with isp
  23. 670 articles are tagged with jobs
  24. 23 articles are tagged with kevin rudd
  25. 112 articles are tagged with layoffs
  26. 2048 articles are tagged with linux
  27. 1302 articles are tagged with microsoft
  28. 1040 articles are tagged with mobile
  29. 279 articles are tagged with mobile phone
  30. 37 articles are tagged with national broadband network
  31. 80 articles are tagged with nbn
  32. 724 articles are tagged with optus
  33. 32 articles are tagged with president
  34. 48 articles are tagged with redundancies
  35. 421 articles are tagged with search
  36. 2575 articles are tagged with security
  37. 17 articles are tagged with simon hackett
  38. 62 articles are tagged with social networking
  39. 1239 articles are tagged with software
  40. 78 articles are tagged with sol trujillo
  41. 66 articles are tagged with stephen conroy
  42. 71 articles are tagged with steve ballmer
  43. 137 articles are tagged with sydney
  44. 66 articles are tagged with tasmania
  45. 2010 articles are tagged with telstra
  46. 43 articles are tagged with terria
  47. 51 articles are tagged with trujillo
  48. 19 articles are tagged with twitter
  49. 168 articles are tagged with uk
  50. 516 articles are tagged with yahoo

Back to top

Featured