Featured Research

from universities, journals, and other organizations

Researchers Help Set Security Standards For The Internet

Date:
July 17, 2009
Source:
Dartmouth College
Summary:
Secure Internet activity requires being able to prove who you are, and experts agree that the traditional approach of passwords is not always effective. PKI and public key cryptography solve these problems, and a new system is now in the pipeline with the Internet Engineering Task Force to become the universal way to easily implement PKI-enhanced computing security.

Dartmouth researchers who were pioneers in Public Key Infrastructure (PKI) – a system that secures and authenticates computer communications – are now playing leading roles establishing Internet standards and guidelines for security.

Secure Internet activity requires being able to prove who you are. Security experts agree that the traditional approach of passwords is not always effective. PKI and public key cryptography solve these problems, and Dartmouth researchers are leading the way in helping organizations deploy PKI. A new system developed at Dartmouth called PRQP, which stands for PKI Resource Query Protocol, is now in the pipeline with the Internet Engineering Task Force (IETF) to become the universal way to easily implement PKI-enhanced computing security.

“PKI labors under the misconception that it’s difficult,” says Scott Rea, senior PKI architect at Dartmouth. “PKI is most successful when it runs under the covers or in the background.” And that’s what it does on a lot of commercial websites that accept credit card numbers, ensuring security behind-the-scenes using PKI or “certificate authority” technology.

Dartmouth’s Institute for Security, Technology, and Society (ISTS) has received funding from the Department of Homeland Security to explore ways to make PKI more user-friendly, for individuals and for businesses of all sizes. That’s how PRQP was born.

“PRQP, very simply, provides a more distributed system for PKI; it works in a way to get trustworthy references in order to verify the PKI certificates of individuals or servers,” says Massimiliano “Max” Pala, research fellow with ISTS and the Open Certificate Authority Lab director.

In other words, as PKI becomes ubiquitous, IT professionals need PQRP, which provides a standard way to operate PKI efficiently, and therefore ensures a consistent and robust measure of security.

And, according to Pala and Rea, adoption of PKI is growing, and there is a deliberate program to bring more and more organizations into the PKI fold. Consortiums have been established, grouped around common themes, so that all members within each group can trust each other’s PKI certificates. For example, there are eight organizations now in the Higher Education group, or “bridge,” which includes colleges and universities. It’s called HEBCA, which stands for Higher Education Bridge Certificate Authority, and Rea serves as director of the HEBCA Operating Authority and secretary of the HEBCA Policy Management Authority.

There are also bridges for federal employees and contractors, pharmaceutical companies and researchers, and one for defense and aerospace companies and contractors. All four existing bridge organizations have formed a “federation” to trust everyone within these networks, and there are varying levels of security, because PKI is customizable. Among all four bridges, approximately 15 million certificates have been issued (mainly to individuals, but servers and other network devices can also carry certificates). That figure is expected to double in the next 12-18 months. At Dartmouth alone there are 34,000 active certificates and about 1,500 server certificates issued from the Dartmouth PKI.


Story Source:

The above story is based on materials provided by Dartmouth College. Note: Materials may be edited for content and length.


Cite This Page:

Dartmouth College. "Researchers Help Set Security Standards For The Internet." ScienceDaily. ScienceDaily, 17 July 2009. <www.sciencedaily.com/releases/2009/07/090708110426.htm>.
Dartmouth College. (2009, July 17). Researchers Help Set Security Standards For The Internet. ScienceDaily. Retrieved July 26, 2014 from www.sciencedaily.com/releases/2009/07/090708110426.htm
Dartmouth College. "Researchers Help Set Security Standards For The Internet." ScienceDaily. www.sciencedaily.com/releases/2009/07/090708110426.htm (accessed July 26, 2014).

Share This




More Computers & Math News

Saturday, July 26, 2014

Featured Research

from universities, journals, and other organizations


Featured Videos

from AP, Reuters, AFP, and other news services

Apple Acquires 'Pandora of Books' Service BookLamp

Apple Acquires 'Pandora of Books' Service BookLamp

Newsy (July 26, 2014) — Apple reportedly acquired analytics and recommendation engine BookLamp for between $10 and $15 million. Video provided by Newsy
Powered by NewsLook.com
Bose Suing Beats Over Noise-Canceling Headphones Patent

Bose Suing Beats Over Noise-Canceling Headphones Patent

Newsy (July 25, 2014) — On Friday electronics maker Bose announced a lawsuit against Beats Electronics, claiming the company infringed on noise-canceling headphone patents. Video provided by Newsy
Powered by NewsLook.com
Mobile App Gives Tour of Battle of Atlanta Sites

Mobile App Gives Tour of Battle of Atlanta Sites

AP (July 25, 2014) — Emory University's Center for Digital Scholarship has launched a self-guided mobile tour app to coincide with the 150th anniversary of the Civil War's Battle of Atlanta. (July 25) Video provided by AP
Powered by NewsLook.com
Bill Gates: Health, Agriculture Key to Africa's Development

Bill Gates: Health, Agriculture Key to Africa's Development

AFP (July 24, 2014) — Health and agriculture development are key if African countries are to overcome poverty and grow, US software billionaire Bill Gates said Thursday, as he received an honourary degree in Ethiopia. Duration: 00:36 Video provided by AFP
Powered by NewsLook.com

Search ScienceDaily

Number of stories in archives: 140,361

Find with keyword(s):
 
Enter a keyword or phrase to search ScienceDaily for related topics and research stories.

Save/Print:
Share:  

Breaking News:
from the past week

In Other News

... from NewsDaily.com

Science News

Health News

Environment News

Technology News



Save/Print:
Share:  

Free Subscriptions


Get the latest science news with ScienceDaily's free email newsletters, updated daily and weekly. Or view hourly updated newsfeeds in your RSS reader:

Get Social & Mobile


Keep up to date with the latest news from ScienceDaily via social networks and mobile apps:

Have Feedback?


Tell us what you think of ScienceDaily -- we welcome both positive and negative comments. Have any problems using the site? Questions?
Mobile iPhone Android Web
Follow Facebook Twitter Google+
Subscribe RSS Feeds Email Newsletters
Latest Headlines Health & Medicine Mind & Brain Space & Time Matter & Energy Computers & Math Plants & Animals Earth & Climate Fossils & Ruins