From: Arshad N. <ars...@st...> - 2012-07-17 00:47:06
|
On 07/16/2012 12:59 PM, Hans Witvliet wrote: > > I had a vague hope that someone might say: > For hotel-chain-such-and-so (ZZZ employees) we needed X people for Y > months, for getting all procedures legally water-tight. > Specially interfacing towards P&O-software XYZ was a real PITA. > > Or at the other end of the spectrum: "we tried it and you should just > forget about it" PKI deployments vary in cost and time-to-deliver based on the business process they are intended to support, just as a database application varies for the same reasons. However, we have learned some things deploying PKIs for the last 13+ years: there are some things that can be standardized even if the customer does not ask for it, so it can be packaged as solution. Variability is what drives up costs (think about what Ford did for car prices in the early 20th century). This model has enabled us to guarantee that we can build a core PKI for any business purpose in 60-business days or less. This includes Root CA, Subordinate CAs, HSMs, Certificate Profiles document, CP, DR testing and training. We usually do these deployments with 1-2 people. The largest PKI took us 5 months with 3 people because it was Windows CA (not easy to work with); the smallest one took us exactly 30-days (EJBCA). Some of our PKI customers are: the world's largest pharmaceutical; the world's largest telco, bio-technology companies for embedded device certificates, a defense contractor, a central bank of a nation, etc. Arshad Noor StrongAuth, Inc. |