Like this CertiGuide? Get it in PDF format!
Click Here!
Use coupon code "certiguide" to save 20%!
(Expires 2004/12/31)

Also available: 300-question Security+ practice test!
Get It Here!

Custom Search







Table Of Contents  CertiGuide to Security+
 9  Chapter 4:  Basics of Cryptography (Domain 4.0; 15%)
      9  4.5  Key Management and Certificate Lifecycles
           9  4.5.7  Recovery

Previous Topic/Section
4.5.7  Recovery
Previous Page
Pages in Current Topic/Section
1
Next Page
4.5.7.1  M of N Control
Next Topic/Section

Who Can Perform Key Recovery?

Another issue around key recovery involves who is authorized to do it. Giving someone key recovery privileges implies that they are being given the ability to obtain ANYONE’s keys, and can decrypt any private messages and perhaps even digitally sign messages with others’ identity. Therefore, personnel given this privilege should be highly trusted, and appropriate record-keeping methods should be in effect to help ensure that this privilege is not abused.

Because of the significant exposure presented by a single person having key recovery privileges, organizations have come up with a variety of ways to see that the cooperation of multiple staffers is required to recover a key. This is implemented differently depending on the key escrow system used, but usually involves some degree of “M of N” control, which is described in the next section.


Previous Topic/Section
4.5.7  Recovery
Previous Page
Pages in Current Topic/Section
1
Next Page
4.5.7.1  M of N Control
Next Topic/Section

If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support!
Donate $2
Donate $5
Donate $10
Donate $20
Donate $30
Donate: $



Home - Table Of Contents - Contact Us

CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004

Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.