GaVI is a German company, which serves as a data center for more than 70 percent of all public insurances in Germany. About 30.000 insurance employees use server applications provided by GaVI.
As GaVI faced a growing customer demand for encryption/authentication solutions like e-mail encryption, secure VPN, and WLAN protection (802.1x), we decided in 2006 to set up a Public Key Infrastructure (PKI). The purpose of this PKI is to have a central and integrated management solution for all encryption/authentication tools, thus avoiding isolated applications. The plan was to realize the PKI not as a separate infrastructure, but to integrate it into GaVI's IDM environment. This session explains the details of this large-scale security project. It will be shown that the GaVI PKI has a generic, customer-oriented architecture, which allows for an easy introduction of additional applications and CAs.