Re: [Ejbca-develop] rough estimation

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

On 07/16/2012 12:59 PM, Hans Witvliet wrote:
>
> I had a vague hope that someone might say:
> For hotel-chain-such-and-so (ZZZ employees) we needed X people for Y
> months, for getting all procedures legally water-tight.
> Specially interfacing towards P&O-software XYZ was a real PITA.
>
> Or at the other end of the spectrum: "we tried it and you should just
> forget about it"

PKI deployments vary in cost and time-to-deliver based on the business
process they are intended to support, just as a database application
varies for the same reasons.

However, we have learned some things deploying PKIs for the last 13+
years: there are some things that can be standardized even if the
customer does not ask for it, so it can be packaged as solution.
Variability is what drives up costs (think about what Ford did for
car prices in the early 20th century).

This model has enabled us to guarantee that we can build a core PKI
for any business purpose in 60-business days or less.  This includes
Root CA, Subordinate CAs, HSMs, Certificate Profiles document, CP,
DR testing and training.

We usually do these deployments with 1-2 people.  The largest PKI
took us 5 months with 3 people because it was Windows CA (not easy
to work with); the smallest one took us exactly 30-days (EJBCA).
Some of our PKI customers are: the world's largest pharmaceutical;
the world's largest telco, bio-technology companies for embedded
device certificates, a defense contractor, a central bank of a
nation, etc.

Arshad Noor
StrongAuth, Inc.