Security experts have invented an alternative form of public key cryptography. Called identity-based encryption (IBE), it enables a public key to be dynamically generated by cryptographically combining a correspondent’s identity (for example, his or her email address) with a single, shared, master secret.Unlike a conventional public key infrastructure (PKI), IBE does not require complex pre-enrollment or revocation checking. There is essentially no need for certificates. An IBE also does not require a complex PKI to generate, certify, decertify, and store individual public keys. Thus, IBE systems are considerably easier–and less costly–to implement.
In this report, we look at the total cost of ownership of Voltage Security’s IBE offering and compare it with that of a traditional PKI system. An accompanying spreadsheet allows organizations to calculate their projected savings.
Important Questions Addressed by This Report Include:
- How does identity-based encryption work?
- What are the main components of an identity-based encryption infrastructure?
- What is the TCO of Voltage’s IBE offering?
- How does the TCO of Voltage’s offering compare with the TCO of a typical PKI system?
Table of Contents
IBE: A Brief Introduction
- Example of IBE
- Potential Advantages of IBE
- Simplicity Without Certificates
- No Pre-enrollmen
- Key Expiration Instead of Revocation
- Reduced Vulnerability to Spammers
- Time Travel Using IBE
- IBE vs. PKI: Total Cost of Ownership
Summary of Voltage’s IBE Offering
- The Voltage Product Structure
- Voltage SecureMail IBE Server
- Email Client Plug-ins
- Gateway Software
- How the Voltage IBE System Works
- Sending a Message Using a Plug-in
- Receiving a Message Using a Plug-in
- Receiving a Message Without a Plug-in
- TCO Elements
- User Productivity Loss, Including Peer Support
- Summary of Key Cost Differences: PKI vs. Voltage
Appendix: The Ferris Research TCO Model
- Notes About Our Model Design
- Platform and User Productivity Loss Costs
- High, Typical, and Low Costs
- Software Maintenance
- Employee Costs
- Allocation of Platform Costs to Messaging
- Period of Depreciation
- Accompanying Spreadsheet
- Customizing the Model
- More About the TCO Elements
- Server Hardware Platform
- Key Integrity
- Client and Server Cryptography Software
- Installation and Professional Services
- IT Staff
- Help Desk Staff