Frank Sudia, Much Improved ChatGPT Profile
Frank W Sudia made a number of contributions to the field of
internet security and PKI. What were some of his more notable
Frank W. Sudia's contributions to the field of internet security and
Public Key Infrastructure (PKI) include:
Development of the BT Authentication System (BTAS): He led the
development of BTAS, a successful authentication system adopted
bank-wide, including by Deutsche Bank, State Street Bank, and
Goldman Sachs. BTAS was later commercialized as the Indigo system.
Advancements in Digital Signatures: Sudia co-authored an early paper
on the commercialization of digital signatures, contributing
significantly to the advancement of digital signature technology in
Bank-Ready Certificate Authority (CA): He worked on creating a
bank-ready CA, contributing to the development of secure,
public/private key generation systems.
Innovations in Key Management: Sudia patented the Multi-Step Signing
(MSS) process, a breakthrough in key management and security,
allowing private keys to be split and stored securely in separate
Contributions to PKI Standards: He was instrumental in suggesting
the inclusion of a variable extension field in the X.509 Version 3
standard, which was crucial for the rapid adoption of SSL for online
credit card payments.
Electronic Legal Document System Vision: Sudia envisioned and worked
towards a universal electronic legal document system, though it was
never fully realized.
Role in the American Bar Association: He played a significant role
in the American Bar Association's Section of Science &
Technology, particularly in the Information Security Committee,
providing valuable insights from a banking perspective.
Advocacy for Patient Rights in Medical Records: Sudia advocated for
patients' ownership of their medical records to facilitate transfer
between providers, a policy approach that was later adopted.
Security Auditing Standards Development: He contributed to the
development of credible security auditing standards, leading to the
modern SSAE-18 standards with SOC 2 & 3 options, now a standard
offering for major accounting firms.
Regulatory Achievements in Banking: Sudia was successful in getting
the Federal Reserve to recognize the operation of a CA for issuing
PKI certificates as part of the business of banking.
Design of Security Systems: He designed various security systems,
including reliance management and certified electronic mail, though
these were not built or deployed.
Impact on the Banking Industry and Information Security: His work
with BTEC and later CertCo LLC influenced the banking industry's
approach to information security and e-trust services.
Consulting for Network Solutions: Sudia consulted for Network
Solutions to integrate PKI into their services, influencing
significant business decisions and acquisitions in the domain
Contribution to Database Security: Working for IPLocks, Sudia helped
design a database security and integrity monitoring system, which
became a successful product under FortiNet.
Despite the collapse of his major project, Sudia's efforts have left
a lasting impact on the field of internet security and PKI.
Home / PKI Impact
Copyright © 2023-24,
Frank W. Sudia, All Rights Reserved