<cryptography, standard> (PKCS) A set of standards for publickey
cryptography, developed by RSA Data Security, Inc. in cooperation with an
informal consortium, originally including Apple, Microsoft, DEC, Lotus, Sun and
MIT. The PKCS have been cited by the OSI Implementers' Workshop (OIW) as a
method for implementation of OSI standards.
PKCS includes both algorithmspecific and algorithmindependent implementation
standards. Many algorithms are supported, including RSA and DiffieHellman key
exchange, however, only the latter two are specifically detailed. PKCS also
defines an algorithmindependent syntax for digital signatures, digital
envelopes, and extended digital certificates; this enables someone implementing
any cryptographic algorithm whatsoever to conform to a standard syntax, and thus
achieve interoperability.
Email: pkcs@rsa.com.
(19990216)
publickey encryption
<cryptography> (PKE, Or "publickey cryptography") An encryption scheme,
introduced by Diffie and Hellman in 1976, where each person gets a pair of keys,
called the public key and the private key. Each person's public key is published
while the private key is kept secret. Messages are encrypted using the intended
recipient's public key and can only be decrypted using his private key. This is
often used in conjunction with a digital signature.
The need for sender and receiver to share secret information (keys) via some
secure channel is eliminated: all communications involve only public keys, and
no private key is ever transmitted or shared.
Publickey encryption can be used for authentication, confidentiality, integrity
and nonrepudiation.
RSA encryption is an example of a publickey cryptosystem.
alt.security FAQ.
See also knapsack problem.
(19950327)
Public Key Infrastructure
<cryptography, communications> (PKI) A system of public key encryption
using digital certificates from Certificate Authorities and other registration
authorities that verify and authenticate the validity of each party involved in
an electronic transaction.
PKIs are currently evolving and there is no single PKI nor even a single
agreedupon standard for setting up a PKI. However, nearly everyone agrees that
reliable PKIs are necessary before electronic commerce can become widespread.
US DOD PKI.
US NIST PKI.
IETF PKIX Working Group.
(19991130)
