search menu icon-carat-right cmu-wordmark

Posts by Aaron Reffett

Implications and Mitigation Strategies for the Loss of End-Entity Private Keys

Implications and Mitigation Strategies for the Loss of End-Entity Private Keys

• Blog
Aaron Reffett

This post is co-authored by Thomas Scanlon. When a private key in a public-key infrastructure (PKI) environment is lost or stolen, compromised end-entity certificates can be used to impersonate a principal (a singular and identifiable logical or physical entity, person, machine, server, or device) that is associated with it. An end-entity certificate is one that does not have certification authority to authorize other certificates. Consequently, the scope of a compromise or loss of an end-entity...

Read More

Contact the Author

Aaron Reffett