Closed Loop PKI
Closed Loop PKI (issued for limited purpose)
- certificates issued for one purpose
- for use by one application (or group of applications)
- in a closed (literally or contractually) environment
- code in limitations in certificate
- trust not an issue
- closed loop PKI pretty much a done deal already
- authorisation typically separate from identity
- no major need for revocation
- no major need for complex Certificate Practice Statements
Value of PKI here is flexibility - a security tool