Dartmouth security researchers: PKI's not so hard

Researchers working to make public key infrastructure even easier to use though

Dartmouth University researchers have received Department of Homeland Security funding to make public key infrastructure easier to use for those looking to secure and authenticate network transactions.

Their PKI Resource Query Protocol (PRQR) is working its way through the IETF standards process.

"PRQP, very simply, provides a more distributed system for PKI; it works in a way to get trustworthy references in order to verify the PKI certificates of individuals or servers," says Massimiliano "Max" Pala, research fellow with ISTS and the Open Certificate Authority Lab director, in a statement.

Dartmouth researchers are involved in efforts to get organizations in the education universe to work together on PKI and trust each other. Scott Rea, senior PKI architect at Dartmouth, plays several key roles at the Higher Education Bridge Certificate Authority (HEBCA), which consists of eight higher education groups whose members trust each other's PKI certificates. Other consortia exist for organizations in healthcare, government, etc.

"PKI labors under the misconception that it's difficult," says Scott Rea, senior PKI architect at Dartmouth, in a statement. "PKI is most successful when it runs under the covers or in the background."

• Security
• Dartmouth College
• PKI