OASIS ponders PKI security for Web services

Wednesday, 8 January 2003, 12:30 AM EST

OASIS (Organization for the Advancement of Structured Information Standards) announced that it has formed a technical committee to advance PKI adoption for Web services and other applications.

The OASIS PKI Technical Committee, formed within the OASIS PKI Member Section, will serve as a global PKI information resource and increase awareness of digital certificates as an important component for managing access to network resources, delivering secured electronic messages, and conducting electronic transactions, according to OASIS. Deliverables are to include white papers, implementation guidelines, and conformance tests to promote PKI adoption.

The committee will address issues behind deploying digital certificates to meet business and security requirements, focusing on overcoming technical and integration challenges, said Terry Leahy of Wells Fargo, chairman of the new committee, in a prepared statement. The committee will serve as a forum for exchanging information on using PKI and digital certificates in application-focused standards and projects and as mechanisms for creating documents related to PKI internationally, according to Leahy.

PKI's status as a transparent technology integrated into an identity management system will make it a key enabling technology for using Web services and other software technologies in high-trust application environments, according to Ron Moritz, senior vice president of eTrust security solutions at Computer Associates, also in a prepared statement.

[ Read more ]


Proactive real-time security intelligence: Moving beyond conventional SIEM

Discussions about security intelligence still focus primarily around conventional reactive SIEM. Security pros need to move from this reactive model to proactively using this security intelligence to protect their businesses.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Fri, Aug 28th