|
|
 |
PKI Policies and Procedures: System Security Architecture
The system security architecture contains a technical description of the PKI system architecture, including firewall and network controls, and vulnerability assessments that meets business and security requirements and integrates with existing system architecture. The system security architecture is internal.
The system security architecture begins as the system security plan, normally started at the same time as overall system planning after business objectives are determined and policies derived and developed.
In a PKI environment, the system security architecture overlaps parts of the certification practices statement but is a distinct document used primarily by system technicians who deploy the entire IT system, including its PKI elements. In many organizations, the CA administrator is the same person as the system administrator, but there is a necessary separation of roles. These roles and their designated personnel should be identified in the system security architecture after it is deployed.
The system security architecture generally contains diagrams and graphics that visually represent the system security architecture. In the planning stage, it is a framework for system planners and designers, and at the operational stage, it is a guide for administrators.
|
|
