United States Navy implementation of the Defense (DoD) Public Key Infrastructure (PKI)

Abstract

Information assurance (IA) within DoD is becoming an increasingly difficult task as information resources are moving toward a web-based environment to counter this problem, DoD is mandating that all services implement DoD Public Key Infrastructure (PKI). DoD PKI is part of DoD's defense in depth strategy. It leverages the power of public key cryptography and digital certificates to improve IA. The thesis begins with a presentation of background information on public/private key cryptography and the elements of a PKI. The thesis then discusses those PKI management issues, i.e., CRLs and directories, that an IT manager should consider when implementing a PKI. The thesis then outlines the three areas the Navy should focus on as it implements DoD PKI; specifically PKI implementation strategies, key distribution alternatives, and how to manage change. In response to the first two areas, the author recommends regionalization, based upon the NMCI architecture, smart cards, and biometrics as answers. In response to the third area, the reader is provided with a discussion on managing change. as it relates to the implementation of DoD PKI. The thesis is concluded with a discussion of what the Navy and DoD needs to do in order to implement the ideas presented in this thesis.