The Bavarian Public Administration has experience with public key services since 1996. In 2000 the Bavarian State Office for Statistics and Data Processing built an PKI based on X.509 certificates. In 2001 the PKI of the Bavarian Public Administration became member to the PKI of the German Public Administration. First use of certificates was for secure e-mail. Over the years certificates have been used for other cases e. g. integrating PKI in applications and infrastructure. For this reason a new PKI solution was deployed in december 2006. In the lecture the following topics will be presented:
GaVI is a German company, which serves as a data center for more than 70 percent of all public insurances in Germany. About 30.000 insurance employees use server applications provided by GaVI.
As GaVI faced a growing customer demand for encryption/authentication solutions like e-mail encryption, secure VPN, and WLAN protection (802.1x), we decided in 2006 to set up a Public Key Infrastructure (PKI). The purpose of this PKI is to have a central and integrated management solution for all encryption/authentication tools, thus avoiding isolated applications. The plan was to realize the PKI not as a separate infrastructure, but to integrate it into GaVI's IDM environment. This session explains the details of this large-scale security project. It will be shown that the GaVI PKI has a generic, customer-oriented architecture, which allows for an easy introduction of additional applications and CAs.
