Featherweight Technology - Low Fixed Project Costs

Return->

Once a security system designer faces the need to provide a serious security solution encompasing client authentication (e.g. for transaction security or access control purposes), the available options are few, and any solution comes with its technology deployment guidelines.

By itself, the SAKEM procedure features featherweight technology:

• The use of Public Key Cryptography (PKC) is limited to the circumstances where it is most needed (that is when a new client needs to be authenticated) and is self-contained in the SAKEM procedure itself. The SAKEM procedure requires a single PKC computation from the client side, and only on one occasion (upon client registration).
  
  
• The SAKEM procedure implementation is a private matter under an issuer organization's control. The interoperability requirements are limited in scope between the issuer data processing center and the system, device or terminal used by potential clients.

In addition, if the SAKEM procedure is used with the SAKEM implied security model, the complete picture encompasses the technological lightness of secret key cryptography (SKC) mechanisms for routine operations (after the client registration).

The alternatives to the SAKEM procedure carry more extensive technological requirements. The public key infrastructure (PKI) is noteworthy because it restricts the client authentication to PKC techniques, it imposes significant interoperability requirements with certification authorities (CA) and on-line directory services. Any technology intensiveness, interoperability requirements, and discretionary recourse to PKC techniques is deemed to increase project costs. The SAKEM procedure avoids all of them.

Return->