NIST PKI Interoperability
Testbed
Achieving Interoperability Between PKIs
The PKI Interoperability Testbed
project is designed to test the interoperability and overall
functionality attained using current PKI technology. The project
includes PKI components for in-house testing and configuration into
different PKI architectures.
The current phase of the project is
focused upon the Bridge CA concept and involves implementation of a
test plan using the pilot federal Bridge CA to link NIST's PKI
components to PKIs in other agencies. The resulting PKI will include
twelve certification authorities and four X.500 directory servers
when complete. This project will provide a sanity check for
performance and scalability measures, and serve as a live testbed
for X.509 certification path building and validation.
The Bridge Certification Authority (BCA) provides the means to
leverage the capabilities of existing corporate PKIs as well as
Federal PKIs. "Bridge Certification Authorities:
Connecting B2B Public Key Infrastructures" describes different
PKI architectures, difficulties in connecting the architectures,
and how a BCA addresses these issues. This article also describes
the BCA concept, BCA deployment in the U.S. federal government,
and how the BCA enables B2B electronic commerce.
The Federal Bridge CA was demonstrated
at the Electronic Messaging Association (EMA) Challenge 2000. A Report
of Federal Bridge Certification Authority Initiative and
Demonstration describing the participation in the challenge is
available.
Development of the Federal Bridge CA
continues with an anticipated date of operation in the first quarter
of 2001. More information on the Federal
Bridge CA is available.
|
