Risk Management Planning of Certification Authority Termination Based on ISO 31000:2018
Certification Authorities (CAs) are vital for ensuring the security of personal data and electronic transactions within Public Key Infrastructure (PKI). However, CA termination, whether due to compromised keys, financial troubles, or government policy changes, poses significant challenges, particula...
Saved in:
| Published in: | 2023 7th International Conference on New Media Studies (CONMEDIA) pp. 127 - 131 |
|---|---|
| Main Authors: | , , , , , |
| Format: | Conference Proceeding |
| Language: | English |
| Published: |
IEEE
06-12-2023
|
| Subjects: | |
| Online Access: | Get full text |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Summary: | Certification Authorities (CAs) are vital for ensuring the security of personal data and electronic transactions within Public Key Infrastructure (PKI). However, CA termination, whether due to compromised keys, financial troubles, or government policy changes, poses significant challenges, particularly in critical sectors like government, banking, healthcare, and education. This paper highlights the need for comprehensive risk management strategies to address CA termination, where existing guidelines are scarce. We propose a risk management framework based on ISO 31000:2018, focusing on the non-technical risk factors that go beyond technical considerations. ISO 31000:2018 offers a versatile approach applicable to various organizational levels and information systems. This research provides recommendations managing risks surrounding CA termination to minimize losses on the customer side. |
|---|---|
| ISSN: | 2771-6015 |
| DOI: | 10.1109/CONMEDIA60526.2023.10428241 |