Establishment Of Trust Relationships Between PKIs. Theoretical Possibilities And Practical Exemplarily Shown For The Software HP OpenView System Management Solution

      Аннотация: A Public Key Infrastructure (PKI) is an intra- or inter-enterprise framework based on certificates to provide trust for all participating parties in such an infrastructure. As enterprises normally use software of different vendors in which each vendor product potentially builds its own software integrated stand-alone PKI the idea is to investigate possibilities to create only one enterprise wide PKI and use those certificates in all software products. After a common introduction into PKIs and potential used certificates with the primary focus on X.509v3 certificates a theoretical analysis of possible approaches to interconnect different PKIs is presented. Those results are used for the following research to establish trust relationships between the HP OpenView System Management Solution, especially its Certificate Management component, and other not HP PKI products. In addition one section covers Web Services and in particular WS-Security standards to analyze if they offer similar security mechanisms as a PKI does.

Ключевые слова: PKI, HP OpenView, Public Key, certificate, web services security, 509v3, WS Security, OpenSSL, Public Key Infrastructure