BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:OpenHSM: An Open key life cycle protocol for Public Key Infrastruc
 ture's Hardware Security Modules - Jean Martina\, Comupter Laboratory\, Un
 iversity of Cambridge
DTSTART:20070622T150000Z
DTEND:20070622T153000Z
UID:TALK7589@talks.cam.ac.uk
CONTACT:Saar Drimer
DESCRIPTION:The private keys used in a PKI are its most important asset. P
 rotect these keys from unauthorised use or disclosure is essential to secu
 re a PKI. Relying parties need assurances that the private key used to sig
 n their certificates is controlled and managed following pre-defined state
 ment policy. Hardware Security Modules (HSM) offer physical and logical pr
 otection and should be considered for any PKI deployment. The software tha
 t manages keys inside an HSM should control all life cycle of a private ke
 y. Normally this kind of equipment implements a embedded\nkey management p
 rotocol and this protocols are not available to public scrutiny due to ind
 ustrial interests. Other important issue is that HSMs are targeted in thei
 r development to the Bank industry and not to PKI\, making some important 
 PKI issues\, like\, strict key usage control and a secure auditing trail\,
  play a secondary role. This paper presents an open protocol to securely m
 anage private keys inside HSMs. The protocol is described\, analysed and d
 iscussed.\n\nLink to the paper:\n*http://www.cl.cam.ac.uk/users/jem74/euro
 pki-2007.pdf*\n\nPaper continuing the idea:\n*http://www.cl.cam.ac.uk/user
 s/jem74/sbseg2007.pdf*
LOCATION:Computer Laboratory\, William Gates Building\, Room FW11
END:VEVENT
END:VCALENDAR