SecAppDev 2020 Lecture Details

Public Key Infrastructure (PKI) fundamentals

Bart Preneel
Tuesday March 10, 09:00 - 10:30
Short description

PKIs ensure the secure delivery and management of public keys. One example is the ecosystem supporting HTTPS, but PKIs are also used in payment systems (EMV) or intranets. This session covers how to manage keys, certificates, and revocation.

Abstract

The function of a Public Key Infrastructure (PKI) is to ensure secure delivery and management of public keys. TLS and HTTPS rely on public certificate authorities, but alternative trust models exist as well. In fact, different trust models lead to different key architectures.

In this session, you will discover what is needed to build and deploy a PKI. We investigate common pitfalls with key management, including the often underestimated revocation process. In the end, you will understand how public PKIs work. You will also have a list of requirements and best practices for setting up a private PKI system.

Key takeaway

Learn what you need to set up and maintain a PKI solution in your organization

Content level

Deep-dive

Target audience

Anyone building, designing or securing applications.

Prerequisites

The session on cryptographic algorithms provides useful background, but is not mandatory.


Bart Preneel

Bart Preneel

Full professor, COSIC, KU Leuven

Prof. Bart Preneel is a full professor at the KU Leuven. He heads the imec-COSIC research group, which has 80 members. His main research interests are cryptography, information security and privacy. He received the RSA Award for Excellence in the Field of Mathematics (2014), the IFIP TC11 Kristian Beckman award (2015) and the ESORICS Outstanding Research Award (2017). He frequently consults for industry and governments about security and privacy technologies.

Full speaker profile


Related crypto sessions

Cryptographic algorithms

Lecture by Bart Preneel

In this session, you will learn about various cryptographic building blocks and their security properties. With that knowledge, you can select the right algorithm for the challenge you are facing.

Crypto Monday March 9, 11:00 - 12:30

Cryptography best practices

Lecture by Bart Preneel

Cryptography is often used in an incorrect or insecure fashion. This session outlines the current best practices, including an extensive list of recommended protocols and algorithms.

Crypto Wednesday March 11, 11:00 - 12:30

The never-ending crypto wars

Lecture by Bart Preneel

TBD

Crypto Monday March 9, 14:00 - 15:30