*Project Not Yet Picked Up*

A private in-house certificate authority allows for the use of SSL between internal servers without the need of purchasing certificates from a public CA. Managing this CA and the resulting certificates, however, provides some problems. Such as: updating certificates when they have expired, deploying new cert versions cleanly, publishing a Certificate Revocation List for your CA, and simply keeping track of them all. While one or more custom CAs currently exists, for the wifi and VPNs for example, they are managed manually and are not centralized. This project is meant to solve this problem and improve the ACM inferstructure making it more robust and allowing for easy and clean creation, deployment, and revocation.

XCA

• Application runs locally, but works on a database file that can be securely shared
• May not have built in CRL mechanism
• Minimal setup required, knowledge of CA concepts required

GnoMint

• Hasn't been explored well

EJBCA

• Web interface
• Very large application
• Built-in CRL publishing
• Significant inferstucture setup required

• PKI (Public Key Infrastructure)
• CA (Certificate Authority)
• CRL (Certificate Revokation List) Publishing/Client Updates

*Fill in when updates to document*