0800 282 353 or +44 1372 364610
TRAINING YOU CAN TRUST
 
 

PKI: A Comprehensive Hands-On Introduction

 
Course: 586   Type: Hands-On Training   Duration: 4 Days
 
 

You Will Learn How To

  • Build a Public Key Infrastructure (PKI) to secure Internet, intranet and extranet applications
  • Identify functionality of PKI components based on standards
  • Design PKI architectures to support different trust models
  • Integrate public key certificates into a range of PKI applications
  • Constrain trust among PKIs with qualified subordination
  • Evaluate policy requirements for your enterprise PKI

Course Benefits

A public key infrastructure (PKI) is a critical component for ensuring confidentiality, integrity and authentication in an enterprise. This hands-on course provides essential knowledge and skills needed to select, design and deploy a PKI to secure existing and future applications within your organisation. You also learn to link your PKI to other organisations and enable secure communications.

Who Should Attend

PKI designers, technical managers overseeing security and those responsible for developing enterprise security. Anyone connecting a PKI to an external Certification Authority (CA), a bridge or another organisation's PKI will also benefit.

Hands-On Training

You gain extensive hands-on experience planning, designing and building a PKI. Exercises include:
  • Setting up an RA to issue certificates to the Entrust Entelligence PKI client
  • Creating custom certificate content
  • Building an Entrust Root CA and connecting to an X.500 directory
  • Cross-certifying with a Bridge CA
  • Constraining trust among PKIs
  • Securing communications with S/MIME, SSL and IPsec
  • Establishing a Microsoft SCA under an Entrust Root CA
  • Authenticating with a smart card
  • Configuring Microsoft compatibility in Entrust CA

Related Courses

  • 433 UNIX and Linux Security
  • 589 Vulnerability Assessment
  • 289 Disaster Recovery Planning
  • 286 Project Risk Management
  • 315 Developing User Requirements

   PKI: A Comprehensive Hands-On Introduction

Upcoming Dates

12 - 15 Aug, 2008
London

For complete schedule, please visit www.learningtree.co.uk
 
http://www.learningtree.co.uk/courses/uk586.htm
 
 
0800 282 353 or +44 1372 364610
TRAINING YOU CAN TRUST
 
 

PKI: A Comprehensive Hands-On Introduction

 
Course: 586   Type: Hands-On Training   Duration: 4 Days
 
 
Course Content
 

Trust in a Digital World

Establishing trust

  • Instigating trust through credentials
  • Verifying with a trusted third party

Implementing trust with cryptography

  • Selecting symmetric and asymmetric algorithms
  • Encrypting with modulo arithmetic
  • Visualising the Diffie-Hellman algorithm
  • Enforcing non-repudiation with digital signatures

Securing PKI

Ensuring strong authentication

  • Authenticating via zero knowledge proof
  • Enforcing access with M-of-N authentication
  • Requiring multifactor authentication with smart cards

Securing the private key

  • Protecting with the Data Protection API
  • Examining key storage in the user profile
  • Prevent tampering with the Hardware Security Module (HSM)

Ensuring persistence of credentials

  • Auto-archiving the encryption private key
  • Utilising a key recovery agent
  • Solving deniability with dual-key support

Authenticating with PKI Credentials

Inside PKI X.509 v3 Certificates

  • Interoperating with industry profiles
  • Setting certificate lifetimes
  • Controlling access with attribute certificates
  • Enrolling Cisco devices with SCEP

Customising certificate templates

  • Creating new certificate fields
  • Implementing policies in templates

Leveraging certificates in applications

  • Securing Web traffic with SSL
  • Setting up a Virtual Private Network (VPN) with IPsec
  • Sending e-mail securely with S/MIME

Establishing Certificate Policy (CP)

  • Identifying with an Object Identifier (OID)
  • Selecting Microsoft application policies
  • Upholding Certification Practice Statements (CPS)
  • Standardising provisions for CP/CPS

Dissecting PKI Components

Trusting a Certification Authority (CA)

  • Rolling over a CA certificate lifetime
  • CA disaster recovery

Registration Authority (RA)

  • Interfacing with PKCS and PKIX standards
  • Contrasting online RA vs. offline RA

Connecting to the PKI Repository

  • Identifying with a distinguished name (DN)
  • Accessing the X.500 directory with LDAP v3

X.509 v2 Certificate Revocation List (CRL)

  • Selecting complete, delta or partitioned CRL
  • Publishing CA certificates and CRLs
  • Authenticating certificates with OCSP

Validating an entity certificate

  • Forming a certificate chain
  • Locating the Trust Anchor
  • Confirming via path processing

Designing Trust Architectures

Building an enterprise hierarchical trust model

  • Distributing trust to subordinate CAs
  • Increasing security with an offline root CA
  • Designating CAs: Issuing, intermediate or policy

Linking with a distributed trust model

  • Extending trust with cross-certification
  • Controlling trust transitivity with path length

Restricting trust with Qualified Subordination

  • Constraining names and policies
  • Mapping equivalent policies with peer CAs
  • Path processing a Certificate Trust List

Integrating with a Bridge CA

  • Centralising trust policy relationships
  • Introducing the Federal Bridge CA (FBCA)

Interfacing with Microsoft PKI

  • Enterprise CA vs. Standalone CA
  • Delegating Common Criteria roles
 
http://www.learningtree.co.uk/courses/uk586.htm
 
 
0800 282 353 or +44 1372 364610
TRAINING YOU CAN TRUST
 
 

PKI: A Comprehensive Hands-On Introduction Tuition

 
Course: 586   Type: Hands-On Training   Duration: 4 Days
 
 

Course 586 Tuition

£ 1,695Standard Tuition
Tuition with a Savings Plan
£ 98010-Day Training Pass
£ 915Flex-Training Pass
£ 1,46010-Training Vouchers
£ 1,5605-Training Vouchers
£ 1,525Alumni Gold Tuition

Your Course Fee Entitles You To...

  • Class participation
  • Team workshops
  • Use of in-class hands-on equipment
  • Comprehensive course materials
  • Morning and afternoon refreshments
  • Lunch
  • Course Completion Certificate
  • FREE participation in the Learning Tree Professional Certification Programmes (including related exams)
  
 

Tuition Savings Plans

Flex-Training Pass
  • 3 Courses for £2 750
  • As little as £915
  • Savings as much as 50%
  • 3 courses in 24 months
10-Day Training Pass
  • Save as much as £770 per course
  • Any combination of courses
  • Only £2,450
Training Vouchers
  • Save as much as £535 per course
  • Fully transferable
  • As low as £1,460 per course
Alumni Gold Discount Attend your first course and you will receive a personalised Alumni Gold Discount card, entitling you to save as much as £200 on each course you take in the following 24 months. Take just one course every two years, and you will be entitled to ongoing discounts...year after year. You save 10%.
* Exact savings may vary depending on courses selected.

Your Guarantee of Satisfaction

Unless you feel 100% satisfied that Learning Tree delivered even more than you expected, there is no fee for your course attendance. Our Guarantee of Quality lets you experience the value of the course - and then pay only if you feel the course was well worth the fee.

Enrolling is Easy and Flexible!

Enrol by phone or online. If your plans change, just let us know and, without a fee, you can transfer to another course or cancel your enrollment. Pay after you've taken the course, and then only if you are 100% satisfied.
 
http://www.learningtree.co.uk/courses/uk586.htm