What are the advantages (and disadvantages) of using public key technology in DAIS Security?
Linda Gricius (March, 1998): Public key users have an inherently stronger binary key with which to authenticate. The key is not memorable, and was not selected by the user in any case. Because of their strength, public keys need be changed less frequently – and the certificate that holds the public key contains a built-in lifetime to enforce its replacement after a chosen period. The involvement of trusted “officers” in the creation and maintenance of public keys is also inherently more secure, requiring the collaboration of more if they wanted to abuse the system. Users that form associations with their public key do not require the services of a Key Distribution Service, even during inter-domain association, which is more efficient at runtime. Public key users also have an advantage in being able to use the same key to authenticate to many principal domains (if they are configured as members of those domains). Their keys are trusted on the basis of a Certification Authority (CA), the
