public key infrastructure (pki) trust serviceshecker.org/mozilla/slalom-pki-fact-sheet.pdfyour pki...

Contact Information: Scott Perry, CPA, CISA Solutions Leader [email protected] 206.617.8747 Slalom Consulting 821 2nd Ave, Suite 1900 Seattle, WA 98104 206.446.5600 SLALOM.COM With world class third-party validation your PKI will be ready for global acceptance Public Key Infrastructure (PKI) Trust Services Challenges What is the best way to govern a PKI and implement it cost effectively? How can you stay on top of current and ever-evolving PKI standards? Who are the competent auditors who understand and have experience with PKI? How do you control costs and receive meaningful and constructive feedback? Slalom Services Educate: maintain an auditable PKI with minimal scope, ensure certificate policy (CP) and certificate practices statement (CPS) meet accepted standards Diagnose & Pre-Operational Audit: interview stakeholders and assess risk; best practice analysis and interoperability testing; pre-audit reporting Remediate: improve technical infrastructure and refine vendor procurement; define roles and establish PKI governance processes Operational Audit: assess operational components against CP and CPS; interview stakeholders; attest over a specified time period Optimize PKI Governance: tune applications and create work-stream wave efficiencies; refine process, implement toolset and deploy performance metrics The Slalom Difference • • • • Personalized: Our tailored approach is specific to the assertions you need attested, using standardized templates, processes and best practices Unobtrusive: Our “wave driven” project plan deconstructs all audit activities, minimizing the time needed by your PKI stakeholders Fair: We understand what information belongs in an audit report Accepted: Our audit reports have been accepted by the Four Bridges Forum: Federal PKI Architecture, CertiPath, SAFE-BioPharma Association, & HEBCA Consultative: Our focus is to help our clients maintain a trusted and auditable environment. We explain why we need information, how findings can be remediated and the process made more efficient and less costly Proven Effective Trusted Assurance

Upload: others

Post on 19-Jul-2020

21 views

Category:

Documents

0 download

Report

Download

Embed Size (px):

TRANSCRIPT

Page 1: Public Key Infrastructure (PKI) Trust Serviceshecker.org/mozilla/slalom-pki-fact-sheet.pdfyour PKI will be ready for global acceptance Public Key Infrastructure (PKI) Trust Services

Contact Information:

Scott Perry, CPA, CISASolutions Leader

[email protected]

206.617.8747

Slalom Consulting

821 2nd Ave, Suite 1900

Seattle, WA 98104

206.446.5600

SLALOM.COM

With world class third-party validation your PKI will be ready for global acceptance

Public Key Infrastructure (PKI) Trust Services

ChallengesWhat is the best way to govern a PKI and implement it cost effectively?

How can you stay on top of current and ever-evolving PKI standards?

Who are the competent auditors who understand and have experience with PKI?

How do you control costs and receive meaningful and constructive feedback?

Slalom ServicesEducate: maintain an auditable PKI with minimal scope, ensure certificate policy

(CP) and certificate practices statement (CPS) meet accepted standards Diagnose & Pre-Operational Audit: interview stakeholders and assess risk; best practice analysis and interoperability testing; pre-audit reportingRemediate: improve technical infrastructure and refine vendor procurement; define roles and establish PKI governance processesOperational Audit: assess operational components against CP and CPS; interview stakeholders; attest over a specified time period Optimize PKI Governance: tune applications and create work-stream wave efficiencies; refine process, implement toolset and deploy performance metrics

The Slalom Difference

•

Personalized: Our tailored approach is specific to the assertions you need attested, using standardized templates, processes and best practices

Unobtrusive: Our “wave driven” project plan deconstructs all audit activities, minimizing the time needed by your PKI stakeholders

Fair: We understand what information belongs in an audit report

Accepted: Our audit reports have been accepted by the Four Bridges Forum: Federal PKI Architecture, CertiPath, SAFE-BioPharma Association, & HEBCA

Consultative: Our focus is to help our clients maintain a trusted and auditable environment. We explain why we need information, how findings can be remediated and the process made more efficient and less costly

Proven

Effective

Trusted

Assurance

PUBLIC KEY INFRASTRUCTURE (PKI): AN AUSTRALIAN SOLUTION

Introduction to public-key infrastructure (PKI)

Introduction to Public Key Infrastructure (PKI)

Matrix powers algorithms for trust evaluation in PKI architectures

PKI: Public Key Infrastructure – tell me in plain English AND THEN deep technical how PKI works

PKI Trust Models - Semantic Scholar · a closer look at the most prominent and widely used PKI trust models, and discusses related semantic issues. INTRODUCTION Trust is a directional

Trust Services from BT - BT | Using the power of … · 2004-09-24 · Trust Services from BT Public Key Infrastructure (PKI) Selecting the Right Approach Operating secure, business-critical

CPS - Certification Practice Statement RKS-Trust PKI