Public key encryption is very powerful, yet its impact on computing is disappointing in many ways. There seems to be a perception that its a very technical, complicated subject, and it therefore needs to be left to very technical people. And those people can take care of themselves, right? Thus, nobody has tried to bring PKI (public-key infrastructure) to the masses. In fact, most administrators-or so vendors say-just manage their certificates manually. They are not using systems to track where the certificates are, what the dates are for their active lifetimes, how they were generated, what CA (certificate authority) may have signed them, what the account information for that CA is, and so on.
展开▼
