Concepts and Planning << >>

Additional Security Features

The KM server provides the following additional features that you can use to increase security:

Certificate Trust List   Enables organizations to establish trust with other organizations so that users can verify the digital signature of messages sent by users in other trusted organizations.

Multiple password policy   Enables administrators to configure the KM server to require multiple passwords to perform certain tasks.

Certificate Trust List

With a certificate trust list, an organization can ensure that the CA that issues a certificate can be trusted, even if the CA is in another organization. This is the most secure way to verify the source of messages sent from another organization. It is also transparent to users ¾ they don't need to perform any additional steps to send a digitally signed message to a user in a trusted organization.

Because certification establishes trust between CAs, security keys sent between users in certified organizations are automatically trusted. For example, even if a digitally signed message is sent with the sender's key (by using a key exchange form), the recipient is not certain who actually sent the message because the signature was issued by an unknown CA. However, if the message is signed by a CA in a trusted organization, the recipient can verify that the signer's identity is authentic, because the organizations' CAs trust each other.

Multiple Password Policy

The multiple password policy prevents administrators from making changes to the KM server without the authorization of one or more other administrators. For example, you can set your KM server so that the cooperation of three administrators is necessary to recover or revoke a user's key.

You can require multiple passwords to perform the following tasks: