Jellyfish

Your PKI can often be a severely underutilised capability within your IT landscape

Public Key Enabling (PKE) is a term used to describe the process of changing systems to utilise Public Key Infrastructure (PKI). It is the incorporation of the use of certificates for security services such as authentication, confidentiality, data integrity, and non-repudiation.

Organisations taking steps to add PKI often do so to meet a point need such as adding HTTPS security to internal websites. PKI, however, can provide much higher value to the business than most organisations realise. Where the investment in PKI has already been made, additional major capability and security benefits can be realised for almost no capital or ongoing costs.

How can I use my PKI?

  • Authentication: to ensure the authenticity of an individual, application or device
  • Confidentiality: ensuring that information can be kept private
  • Integrity: that information cannot be manipulated without this being obvious to the recipient
  • Non-Repudiation: the creator or sender cannot disown the information or claim they did not create or send the information

Authentication Enabling

  • People: PKI ensures greater authentication of people with soft or physical to logical & physical systems.
  • Devices: PKI ensures greater authentication of devices – esp. when connecting to networks, zero-trust model.
  • Websites: PKI ensures greater authentication of web sites, applications, services & APIs.
  • Cloud: PKI enables stronger authentication needed for cloud environments.

Confidentiality Enabling

  • Compliance: PKI ensures greater level of auditing for compliance standards
  • Encryption: Database encryption – e.g. Transparent Data Encryption
  • Secure: Secure communication channels – TLS in websites, apps, VPNs, etc
  • Email: Confidentiality enables secure email

Integrity and Non-Repudiation

  • Web: PKI protects web and other services and avoids being able to spoof a website
  • Device Trust: PKI enables device trust – Trusting Laptops, Mobiles, industrial equipment, etc
  • Digital Signing: PKI enables digital Document Signing and thereby ensuring document source and integrity
  • Code Signing: PKI enables code signing. It is verifying the source and integrity of software