NIST on PKI

John Young jya at pipeline.com
Wed Jul 10 13:59:41 PDT 1996


   Business Wire, 9 July 1996: 
 
   Note To Editors: For more information on the NIST 
   initiative, please refer to the NIST press release: "NIST, 
   Industry Partners to Develop Specifications for Public Key 
   Infrastructure," July 9, 1996. 
 
   ----------  
 
   Certicom to Partner with NIST to Develop Specifications for 
   a Public Key Infrastructure; Certicom signs agreement with 
   NIST to contribute cryptographic expertise 
 
 
   Toronto -- Certicom Corp. a leading information security 
   company, today announced that it will participate in an 
   initiative by the U.S. Commerce Department's National 
   Institute of Standards and Technology (NIST) which will 
   lead to the development of the elements of a public key 
   infrastructure (PKI).  
 
   A PKI will enable individuals and organizations who have 
   never met to electronically send and receive documents 
   which have been digitally signed. 
 
   NIST announced today that it is partnering with several 
   companies who bring specialized experience in providing 
   products or services related to PKI components. 
 
   "Certicom is excited about the establishment of this PKI 
   project. It represents a proactive initiative by the 
   Commerce Department to develop standards based on existing 
   technology and commercial and government requirements by 
   soliciting the active participation of key industry 
   players," said Skip Hirsh, Director of U.S. Government 
   Marketing for Certicom. 
 
   "The strong leadership position taken by NIST will 
   accelerate the deployment of practical public key 
   infrastructures essential for the secure exchange of 
   electronic data." 
 
   "Certicom will contribute significant cryptographic 
   experience to the partnership, particularly with the 
   Elliptic Curve Cryptosystem (ECC) which is the most 
   efficient public key technology available," commented Gary 
   Hughes, president and CEO of Certicom. "ECC is a critical, 
   enabling technology for this NIST project because of its 
   efficiency in the high volume applications that are common  
   in PKIs." ... 
 
   Other partners that NIST has signed cooperative research 
   and development agreements (CRADAs) with include: AT&T 
   Government Markets, BBN Corp., Cylink Corp., DynCorp 
   Information & Technology Inc., Information Resource 
   Engineering Inc., Motorola, Northern Telecom Ltd. (Nortel), 
   SPYRUS, Inc. and VeriSign, Inc. 
 
   The goal of the partnership is to develop a minimum 
   interoperability specification for the technical components 
   of a PKI. The results will be shared with participating 
   companies, the appropriate standards-making bodies, federal 
   government agencies and industry organizations that are 
   working on aspects of PKI development. 
 
   A public key infrastructure relies on public key 
   cryptography in which each user has a key pair consisting 
   of a public and private key. The public key must be 
   digitally signed by a central authority to ensure its 
   authenticity. Digital signatures are cryptographic 
   techniques which are used for data integrity, 
   authentication and nonrepudiation. 
 
   The process of digitally signing public keys is known as 
   certification and is the main purpose of a public key 
   infrastructure. 
  
   Certicom expects to demonstrate the benefits ECC provides 
   to large-scale PKIs in which numerous users are signing and 
   verifying documents. 
 
   Elliptic Curve Cryptosystems have the highest strength per 
   bit of any known public key system, minimizing the 
   requirement for large key sizes. Cryptographic processes 
   based on ECC provide efficient computation techniques which 
   reduce communications and computation time, thereby 
   substantially reducing costs. 
 
   Certicom is a developer of information security products 
   and technologies and is the leader in Elliptic Curve 
   Cryptosystems, the world's most efficient public key 
   technology. The company specializes in applications where 
   the combination of cryptographic strength and high 
   efficiency are critical. Certicom's primary markets are in 
   wireless, smart cards, banking and electronic commerce over 
   the Internet. 
  
   Visit Certicom's home page at www.certicom.ca.  
 
   ----- 
 
 
 
 
 






More information about the cypherpunks-legacy mailing list