Mechanisms
This section gives a brief overview of the cryptographic mechanisms used to enable the PKI services of authenticity, integrity, and confidentiality. See the Handbook of Applied Cryptography [MvOV97] for further discussion.
Authentication
The PKI service of authentication (as opposed to the non-PKI operation of initial authentication to the local environment, which may involve single- or multi-factor authentication including passwords or biometric devices) employs the cryptographic technique of a digital signature. The signature may be computed over the hash of one of the following three values:
Some data to be authenticated
Some request that the user intends to send to a remote device
A random challenge issued by a remote device ...
Get Understanding Public-Key Infrastructure: Concepts, Standards, and Deployment Considerations now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
