White Papers

The documents presented here give a reasonable impression of the type of work I was engaged in delivering.

___________________________________________________________________________





PKI Offline CA HSM Best Practices for Thales / nCipher
I was commissioned by Thales e-Security to author a white paper providing a detailed examination of architectural best practices on deploying offline certification authorities and Hardware Security Modules (HSMs).  The paper articulates PKI trade‐offs in security, simplicity, availability and cost.  Click on the link here to download it as I wrote it for Thales:
Offline CA Best Practices White Paper​.  After nCipher was spun out of Thales in 2019, the document was reformatted and re-published (by this time I had retired) - you can access it by clicking this link.

___________________________________________________________________________





​Active Directory Certificate Services (ADCS) for Oxford Computer Group
I was commissioned by ThirdSpace (formerly Oxford Computer Group), the identity and security management specialists for enterprises, to author a white paper which explains PKI at a very high level and describes "how Microsoft does it".  Click on the link here to download it:
ADCS White Paper.