Cryptographic Key Management of the Future! April 21, 2009
Posted by keymanagement in WELCOME.Tags: asymmetric key management, Department of Commerce, National Institute of Standards and Technology, symmetric key management
2 comments
Welcome to the Cryptographic Key Management (CKM) Project Blog. A CKM Workshop was held at the National Institute of Standards and Technology, on June 8-9, 2009. CKM is a fundamental part of cryptographic technology and is considered one of the most difficult aspects associated with its use. Of particular concern are the scalability of the methods used to distribute keys and the usability of these methods. NIST has undertaken an effort to improve the overall key management strategies used by the public and private sectors in order to enhance the usability of cryptographic technology, provide scalability across cryptographic technologies, and support a global cryptographic key management infrastructure.
This blog will provide a forum to post questions, provide answers, and submit comments on CKM systems that are used at present or are planned for the future. The goals of maintaining this blog include facilitating dialogue among the participants in the Workshop, users of current CKM systems, people designing and implementing new CKM systems, and researchers designing and analyzing CKM systems of the future.
QUESTION F June 8, 2009
Posted by keymanagement in QUESTIONS ON KEY MANAGEMENT.1 comment so far
What can we expect to accomplish with a KM standard?
Facilitating Key Management Dialogue May 13, 2009
Posted by keymanagement in IMPORTANCE OF KEY MANAGEMENT.add a comment
Our objective with this blog and Key Management Workshop is to disseminate new information on key management. Let us know if you find the blog useful and feel free to post suggestions. To fully explore the scope of key management, we need YOUR participation and knowledge!
Question A May 12, 2009
Posted by keymanagement in QUESTIONS ON KEY MANAGEMENT.2 comments
What leap-ahead technologies will impact the key management?
- Would you say that technology will obviate the need for cryptography? If so, what are those technologies and in what time frame will they be deployed?
- Would you say that advances in cryptography will obviate or simplify the key management? If so, what are those technologies, and in what time frame they will be deployed?
- Would you say there will be advances in key management technologies? If so, what are those technologies, and in what time frame they will be deployed?
- Would you say some alternative to key management will emerge?
- Will future leap-ahead technologies improve security, computational efficiency, ease of use, or some other characteristic?
Question B May 12, 2009
Posted by keymanagement in QUESTIONS ON KEY MANAGEMENT.10 comments
What constitutes a key management framework?
- Which phases of the key life cycle should the framework include (generation, distribution, archive, recovery, storage, usage, renewal, revocation, etc.)?
- What types of keys should the framework cover (private, public, symmetric, ephemeral, static/long-term)?
- Should a key management framework include how the key management services are invoked?
- What key management policies should be required or assumed?
Question C May 12, 2009
Posted by keymanagement in QUESTIONS ON KEY MANAGEMENT.1 comment so far
Do you see new applications requiring key management?
- If so, what are those applications? For example, many of the internet infrastructure protocols such as DNS, BGP, Inter Domain Routing, etc., may require key management capabilities.
- Are the needs of new applications any different than current applications? If so, in what areas:
i.Security
ii.Response time
iii.Throughput
iv.Workload
v.Interface
vi.Others
Question D May 12, 2009
Posted by keymanagement in QUESTIONS ON KEY MANAGEMENT.add a comment
Should we standardize on attributes of keys? If yes, what are those attributes? Are they different for different types of keys (private, public, symmetric, ephemeral, static/long-term)? Why should we standardize on the attributes?
Question E May 12, 2009
Posted by keymanagement in QUESTIONS ON KEY MANAGEMENT.4 comments
What R&D activities should be undertaken to advance the key management technology?
