220.127.116.11 Private Key Protection
A private key holder is responsible for taking all adequate precautions to secure their primary key and ensure that no one has access to it. This is important because anyone who obtains a users private key can forge a message and claim it was sent by that user, and can decrypt any sensitive communications encrypted by that users public key.
This includes all the common precautions you might expect, like:
and also involves educating users about the potential for social engineering attempts to acquire their private key, much as they are educated (we hope) not to give out their network passwords.
Home - Table Of Contents - Contact Us
CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004
Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.