What is a Public Key Infrastructure (PKI)?

Public Key Infrastructure is the framework that enables trusted use of public-key cryptography by coordinating people, processes, and technical components. It provides the structure to create, manage, distribute, store, and revoke digital certificates, and to manage the keys used for encryption and digital signatures. This includes the roles involved (such as certificate authorities and registration authorities), the policies and standards that govern certificate issuance, the hardware and software tools (often including hardware security modules) used to protect keys, and the procedures for lifecycle tasks like issuance, renewal, revocation, and key recovery. By binding a public key to an identity through certificates, PKI lets others verify who a key belongs to, enable encrypted communication, and confirm signatures in a scalable, trusted way. It’s much more than just password tools, a single cryptographic algorithm, or a hardware device.