Key Management Key Management Interoperability ProtocolInteroperability Protocol

By: Derrick EricksonBy: Derrick Erickson

Erickson Erickson 22

OutlineOutline

What is KMIP?What is KMIP? PurposePurpose Current DesignCurrent Design SolutionSolution DetailsDetails ConclusionConclusion ReferencesReferences

Erickson Erickson 33

What is KMIP?What is KMIP?

OasisOasis KMIP is a universal management KMIP is a universal management

systemsystem It controls communication between It controls communication between

systemssystems Supported by HP, IBM, Brocade, and Supported by HP, IBM, Brocade, and

othersothers

Erickson Erickson 44

PurposePurpose

An open source solutionAn open source solution Fixes the weaknesses of current Fixes the weaknesses of current

designsdesigns Reduces complexityReduces complexity Easier to maintainEasier to maintain

Erickson Erickson 55

Current DesignCurrent Design

Erickson Erickson 66

SolutionSolution

Simplifies current Simplifies current designdesign

Reduces overheadReduces overhead Less complicatedLess complicated

Erickson Erickson 77

DetailsDetails

Works with symmetric keys, asymmetric Works with symmetric keys, asymmetric keys, certificates, etckeys, certificates, etc

Divided into objects, operations, and Divided into objects, operations, and attributesattributes

ExampleExample

Erickson Erickson 88

ConclusionConclusion

Fixes the current designFixes the current design Open sourceOpen source Supports multiple types of Supports multiple types of

cryptographic protocolscryptographic protocols

Erickson Erickson 99

ReferencesReferences

http://www.oasis-open.org/committees/tc_home.phttp://www.oasis-open.org/committees/tc_home.php?wg_abbrev=kmiphp?wg_abbrev=kmip

Key Management Interoperability Protocol (KMIP) Addressing the Need for Standardization in Enterprise Key Management