Archives
  Columns
  Features
  Print Archives
1994-1998
  Special
  BYTE Digest
  Michael Abrash's Graphics Programming Black Book
  101 Perl Articles
  About Us
  How to Access BYTE.com
  Write to BYTE.com
  Advertise with BYTE.com

Newsletter
Free E-mail Newsletter from BYTE.com
 
    
  HOME   ABOUT US   ARCHIVES   CONTACT US   ADVERTISE   REGISTER
Visit the home page Browse the four-year online archive Download platform-neutral CPU/FPU benchmarks Find information for advertisers, authors, vendors, subscribers Request free information on products written about or advertised in BYTE Submit a press release, or scan recent announcements Talk with BYTE's staff and readers about products and technologies

ArticlesSecurity: Who's Got the Key?

February 1997 / Cover Story / Your E-Mail is OBSOLETE / Security: Who's Got the Key?

Companies must communicate with the outside world by e-mail. Yet the thought of moving company data freely to and from a company network is frightening to information technology (IT) managers. In a typical intranet, valuable company data is shielded from the outside by a firewall, which sits between the network and an externally accessible server. Nothing gets through -- except e-mail.

Existing encryption schemes, such as RSA, can ensure secure transmission of data. In fact, an extension for encryption to the MIME format, S/MIME, is based on RSA and has broad industry support, but there's a catch. Encryption requires two keys, public and private. The private key encodes the message, and the p ublic key decodes it. The recipient must have access to the public key to understand the message. ( See the figure. )

Some trusted entity must hold those keys in escrow and assign certificates that act as a digital signature, identifying users of those keys. That entity is as yet undetermined. It could be a government body, such as the U.S. Post Office, or an independent organization set up explicitly for the purpose. Verisign (Mountain View, CA) is a commercial enterprise that handles certificates. Some messaging products, such as Netscape's SuiteSpot 3.0, come with a certificate server for internal use. Third-party products, such as Nortel's Entrust, also allow companies to build internal certificate-management applications. To ensure compatibility from one certification scheme to another, companies will likely cross-certify, according to Ron Rosenthal, director of new initiatives at Harbinger Enterprise Solutions (Atlanta, GA), a vendor of electronic -commerce products and services.

The dilemma: Companies can build and manage internal certificate systems -- which gives them control, but at the cost of added administrative overhead -- or they can off-load that chore to a third party but lose the security of controlling the distribution of certificates. For many companies, neither choice is satisfactory.

Messaging Security

illustration_link (78 Kbytes)

Up to the Cover Story section contentsGo to previous article: Security: Who's Got the Key?Go to next article: Gateway HellSearchSend a comment on this articleSubscribe to BYTE or BYTE on CD-ROM  
Flexible C++
Matthew Wilson
My approach to software engineering is far more pragmatic than it is theoretical--and no language better exemplifies this than C++.

more...

BYTE Digest

BYTE Digest editors every month analyze and evaluate the best articles from Information Week, EE Times, Dr. Dobb's Journal, Network Computing, Sys Admin, and dozens of other CMP publications—bringing you critical news and information about wireless communication, computer security, software development, embedded systems, and more!

Find out more
BYTE.com Store

BYTE CD-ROM
NOW, on one CD-ROM, you can instantly access more than 8 years of BYTE.
 
The Best of BYTE Volume 1: Programming Languages
The Best of BYTE
Volume 1: Programming Languages
In this issue of Best of BYTE, we bring together some of the leading programming language designers and implementors...

Copyright © 2005 CMP Media LLC, Privacy Policy, Your California Privacy rights, Terms of Service
Site comments: webmaster@byte.com
SDMG Web Sites: BYTE.com, C/C++ Users Journal, Dr. Dobb's Journal, MSDN Magazine, New Architect, SD Expo, SD Magazine, Sys Admin, The Perl Journal, UnixReview.com, Windows Developer Network