Login | Contact | Site Terms | Privacy | Sitemap | Help | Search |
header 1 top left, Doc-URL

Advanced Technologies

Brand Protection

Cash Control Unit

Demonstrations

Display Cards

FCOS

Internet Smart Card

MobiCore

Mobile Security Card

NFC

PKI

IT security with StarSign

Trusted Services - Venyon
spacer
Glossar
header 2 top center, Doc-URL
Spacer left
PKI Technology

PKI Technology

Introduction

Public Key Infrastructure is a comprehensive, generally hierarchical framework of procedures, the purpose of which is to enable its participants, who do not normally know each other in advance, to perform the following tasks when using open (and therefore unsecure) electronic communication networks, especially the Internet:

  • mutual authentication
  • confidential communication
  • providing electronic documents with a legally binding digital signature

For this purpose, the PKI relies on specific hardware and software systems as well as an appropriate infrastructure.

One of the essentials of a PKI is public key cryptography, which allows one key (or a small number of keys) per PKI member to be published for use by the other members so that control can be maintained over the total number of public keys that have to be managed in the system.

A PKI also relies fundamentally on what are known as certificates, which serve as proof of authenticity for the public keys. Certificates are used mainly in connection with digital signatures. When a member receives a message containing a digital signature, the certificate first confirms that the personal data belong to the key(s) used by the sender. Secondly, it confirms that he or she is still a valid subscriber to the PKI. Due to the hierarchical structure of a PKI, the members’ trust in the certificates is, in the end, based solely on their trust in the PKI’s certification authority, the so-called “root”.

Thus, a PKI fulfills the four basic requirements of e-security as well as security on open networks:

  • authentication
  • confidentiality
  • data integrity
  • non-repudiation

Digital Signature

Digital signatures are the online counterpart to hand-written signatures, which we currently use as a means of personal identification. Digital signatures and encryption and authentication mechanisms can be used to protect data, verify the author, and limit access. They will play an ever greater role in daily life, especially in e-commerce, home banking, and Internet use.

G&D not only offers smart cards and their operating systems, but also other services such as e-mail encryption and logon security. We implement complete PKI systems that live up to our customers’ expectations.

Smart Cards

Smart cards are the most important element in any security system that uses digital signatures. Secret keys and certificates can be safely stored on them. The cards can also be utilized to encrypt and decrypt information as well as verify signatures and certificates inside the card with the processor. Besides their cryptographic functions, all G&D cards are able to store additional information and applications.

G&D Partnerships in the PKI Sector

Our desire is to exchange experiences internationally with other market players. That is why Giesecke & Devrient has become a member of the following PKI-related organizations and forums.

Identrus
Baltimore
Silicon Trust
Radicchio

PKI related products:

Spacer right
header 3 top right, Doc-URL
contacts.gif

For further information please contact
Technology Team
Phone: +49 89 4119-2976
Fax: +49 89 4119-2881

PKI Related G&D Products
Payment Cards

footer 1 left, Doc-URL
top
footer 2 center, Doc-URL
© 2010 by Giesecke & Devrient GmbH, Prinzregentenstr. 159, 81677 Munich
All rights reserved
footer 3 right, Doc-URL