[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
PKI References
-----BEGIN PGP SIGNED MESSAGE-----
Hi, all...
A while ago I posted a request for PKI references. I've compiled what I
received into a Web page:
http://www.zoo.net/~marcnarc/PKI/References.htm
I've attached the text of the page below for those of you without Web
access.
Please let me know of any errors or omissions. I'm aware of a couple of
things:
- What's the URL for Part III of PKIX's draft?
- I haven't tracked down any references involving electronic cash.
Any suggestions in this area would be most helpful.
Thanks go to the following people who sent me all sorts of goodies:
Carl Ellison
Michael Froomkin
Michael Helm
Denis Trcek
Mark Wahl
- Marc
=========================================================================
Public Key Infrastructure References
X.509
The X Standards
Series X Recommendations are available online (with a subscription) from:
http://www.itu.ch/itudoc/itu-t/rec/x.html. The recommendations most
relevant to PKIs are:
- Recommendation X.209 (1988) - Specification of basic encoding rules
for Abstract Syntax Notation One (ASN.1).
- Recommendation X.500 (11/93) - Information technology - Open Systems
Interconnection - The directory: overview of concepts, models, and
services.
- Recommendation X.509 (11/93) - Information technology - Open Systems
Interconnection - The directory: Authentication framework.
X.509-Based Products
- Entrust by Nortel.
- VeriSign's products annd services.
- Netscape's WWW browsers and servers.
- Xcert's Sentry.
- Europe's Internetworking Public Key Certification Infrastructure.
- COST's Certification Infrastructure.
- The Secure Electronic Transaction (SET) Specifications by MasterCard
and Visa.
- SET Business Specification
- SET Technical Specification
- Parts of PKCS:
- PKCS #6: Extended-Certificate Syntax Standard.
- PKCS #9: Selected Attribute Types.
- PKCS #10: Certification Request Standard.
X.509 Papers
- Public Key Infrastructure Study Final Report.
Produced by the MITRE Corporation for NIST, April 1994.
- A Public Key Infrastructure for U.S. Government Unclassified but
Sensitive Applications.
Written by W. Ford.
Produced by Nortel and BNR for NIST, September 1995.
- Federal Public Key Infrastructure (PKI) Technical Specifications
(Version 1) Part A: Requirements.
W. Polk, Ed.
NIST PKI Technical Working Group, January 1996.
- Federal Public Key Infrastructure (PKI) Technical Specifications
(Version 1) Part B: Technical Security Policy.
N. Nazareno, Ed.
NIST PKI Technical Working Group, January 1996.
- Federal Public Key Infrastructure (PKI) Technical Specifications
(Version 1) Part C: Concept of Operations.
W. Burr, Ed.
NIST PKI Technical Working Group, November 1995.
- Federal Public Key Infrastructure (PKI) Technical Specifications
(Version 1) Part D: Interoperability Profiles.
Produced by CygnaCom Solutions, Inc. for the NIST PKI Technical
Working Group, September 1995.
- CA-Browsing System - A Supporting Application for Global Security
Services.
D. Trcek, T. Klobucar, B. J. Blazic and F. Bracun.
ISOC Symposium on Network and Distributed System Security, San
Diego, Feb. 94, pp. 123-128.
- Certification Infrastructure Reference Procedures.
D. Trcek, B. J. Blazic.
NIST PKI Technical Working Group (W. Burr, Ed.), NISTIR 5788, NIST,
September 1995.
- Security Policy Space Definition and Structuring.
D. Trcek, B. J. Blazic and N. Pavesic.
Computer Standards & Interfaces, Vol. 18, No. 2, North-Holland,
March 1996, pp. 191-195.
Non-X.509
Other PKI Proposals
- SDSI - A Simple Distributed Security Infrastructure.
R. Rivest and B. Lampson.
- P. Zimmermann's Pretty Good Privacy (PGP)
- PGP User's Guide Volume I: Essential Topics.
- PGP User's Guide Volume II: Special Topics.
Non-X.509 Products
- P. Zimmermann's Pretty Good Privacy (PGP)
PKI Legal Issues
- The Essential Role of Trusted Third Parties in Electronic Commerce.
M. Froomkin
- Electronic Commerce and Information Technology Division, Section of
Science and Technology, American Bar Association
- Cryptography - Markets, Law and Policy
- Utah's Digital Signature Legislation
Internet RFCs & Drafts
Internet RFCs
- RFC 1422: Privacy Enhancement for Internet Electronic Mail: Part II
Certificate-Based Key Management
S. Kent
- RFC 1424: Privacy Enhancement for Internet Electronic Mail: Part IV:
Key Certification and Related Services
B. Kaliski
Internet Drafts
- IETF X.509 PKI Working Group
- Internet Public Key Infrastructure Part I: X.509 Certificate and
CRL Profile
R. Housley, W. Ford and D. Solo
- Internet Public Key Infrastructure Part III: Certificate
Management Protocols
S. Farrell, C. Adams and W. Ford
Generic PKI Papers
- Decentralized Trust Management.
M. Blaze, J. Feigenbaum, and J. Lacy.
Proceedings of the IEEE Conference on Security and Privacy. May
1996.
- Generalized Certificates.
C. M. Ellison
- SDSI - A Simple Distributed Security Infrastructure.
R. Rivest and B. Lampson.
Public-Key Cryptography
- RSA Data Security Inc.
- PKCS
- Ron Rivest's page of Cryptography and Security links
- Cylink Corporation holds the licensing rights to various PK patents
held by Stanford University.
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
iQB1AwUBMaXgQlrdFXNdDxPlAQEfAgL9FeZdneq8QzR7ZFw8PThNFH0hTVeMYYYH
K6FiMb+8ow1RUFwisQbP/8QHUuFlmqYEbeI6Gs2eCFupW4Q79Ea4YUOgR2bZVHQU
fWLP8xq+CPSUXkha1unCR9cDdx2Re4bq
=M11W
-----END PGP SIGNATURE-----