Key and certificate management considerations

Question

Key and certificate management considerations

I deploy hundreds / thousands of small servers that communicate with my hosted motherhood through HTTPS and ssh.

What are the best practices for managing SSL client certificates (for https) and ssh keys when revocation may be required? I think about issues like distributing keys / certificates for change, revocation management when a separate ssh key is required, rather than a shared one ...

+3

ssl ssh

Bill gribble Nov 09 '10 at 11:19

source share

2 answers

Stefan Steiger · Answer 1 · 2010-11-09T11:26:34+0000

Create a key on the client, save the key pair in the SQLite database (preferably encrypted), transfer the public key to the server using web methods and save it there.

, .

( )

, .

Robert · Answer 2 · 2010-11-09T15:00:27+0000

Enterprise-, , Director Encryption Director: http://www.venafi.com/Products/Venafi-Encryption-Director/ , , .

(http://www.kousec.com/download.html), , .

Key and certificate management considerations

More articles: