cacert
play

CACert Tanner Lovelace Triangle Linux Users Group 11/May/2006 - PowerPoint PPT Presentation

Apr 16, 2023 •280 likes •462 views

CACert Tanner Lovelace Triangle Linux Users Group 11/May/2006 Outline What is SSL and why do we need it? What is a Certificate Authority? What is CACert? How does CACert verify identity? How do I use CACert? Conclusion and Mass Assurance

  1. CACert Tanner Lovelace Triangle Linux Users Group 11/May/2006

  2. Outline What is SSL and why do we need it? What is a Certificate Authority? What is CACert? How does CACert verify identity? How do I use CACert? Conclusion and Mass Assurance

  3. How Does the Web Work? Client-server No verification or encryption (in standard model)

  4. Problems with Standard Web Susceptible to eavesdropping Man-in-the-middle (i.e. transparent proxies)

  5. The Web with SSL Encryption of Traffic Verification of Identity

  6. Outline What is SSL and why do we need it? What is a Certificate Authority? What is CACert? How does CACert verify identity? How do I use CACert? Conclusion and Mass Assurance

  7. Trusted Third Party Checks identity Based on identity check, it vouches for a server

  8. Standard Certificate Authorities Verisign Thawte AOL GoDaddy Many more...

  9. CACert Community driven Certificate Authority Primary goals: Inclusion into mainstream browsers! (Mozilla bug #215243, opened 8/6/03, currently with 63 votes, 107 subscribers) http://wiki.cacert.org/wiki/InclusionStatus To provide a trust mechanism to go with the security aspects of encryption.

  10. Outline What is SSL and why do we need it? What is a Certificate Authority? What is CACert? How does CACert verify identity? How do I use CACert? Conclusion and Mass Assurance

  11. CACert Assurance Program Identify Verification Program CACert Assurer Trusted Third Party Being a notary for another authority

  12. Point System 0-49 points - Considered “unassured” 50 points - Full name on client certs, Server certs valid for 24 months, GPG key signed by CACert 100 points - Maximum available through WoT, can apply for codesigning cert and assure others 150 points - Fully assured, can issue 35 points 200 points - Super Assurer, temporary increase

  13. Issuing Points Own points Issuable points If you have 100 points, 100 10 you can assure others. 110 15 You get 2 points for each assurance 120 20 130 25 The maximum points you can issue is a 140 30 sliding scale 150 35

  14. Outline What is SSL and why do we need it? What is a Certificate Authority? What is CACert? How does CACert verify identity? How do I use CACert? Conclusion and Mass Assurance

  15. Installing the Root Certificate Go to http://www.cacert.org/ Click on “Root Certificate” Check the fingerprint and if correct... Import into the browser

  16. Getting a Certificate Client Certificates Server Certificates Generating the certificate Getting it signed

  17. Using Your Certificate Using a client certificate Using a server certificate Installation on a server

  18. Outline What is SSL and why do we need it? What is a Certificate Authority? What is CACert? How does CACert verify identity? How do I use CACert? Conclusion and Mass Assurance

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Final 2020 Plan Certification Standards with Public Comment John-Pierre Cardenas, Director of

Final 2020 Plan Certification Standards with Public Comment John-Pierre Cardenas, Director of

Final 2020 Plan Certification Standards with Public Comment John-Pierre Cardenas, Director of Policy and Plan Management January 22, 2019 A service of Maryland Health Benefit Exchange Public Comment Public Comment Received MHBE received

454 views • 41 slides
Remediation Certificates 101 Outline What are they? Regulatory basis for issuing

Remediation Certificates 101 Outline What are they? Regulatory basis for issuing

Remediation Certificates 101 Outline What are they? Regulatory basis for issuing remediation certificates Definitions and brief history of the program Why should I want one? Benefits for the site owner Benefits for the

325 views • 19 slides
OVERVIEW OF CPARS ACQUISITION HOUR WEBINAR February 21, 2018 1 WEBINAR ETIQUETTE Please

OVERVIEW OF CPARS ACQUISITION HOUR WEBINAR February 21, 2018 1 WEBINAR ETIQUETTE Please

A Procurement Technical Assistance Center (PTAC) OVERVIEW OF CPARS ACQUISITION HOUR WEBINAR February 21, 2018 1 WEBINAR ETIQUETTE Please When logging into go-to-meeting, enter the name that you have registered with Put your phone

900 views • 74 slides
CASS New Members Academy Presentation Teacher and Leadership Excellence Sector September 25,

CASS New Members Academy Presentation Teacher and Leadership Excellence Sector September 25,

CASS New Members Academy Presentation Teacher and Leadership Excellence Sector September 25, 2018 Presentation Focus Teacher Certification Role of a System Leader in Teacher Certification Reporting Teacher Discipline Matters Verifying

476 views • 22 slides
Censorship-Resistant Architectures Henry Tan Micah Sherr Georgetown University Georgetown

Censorship-Resistant Architectures Henry Tan Micah Sherr Georgetown University Georgetown

Censorship-Resistant Architectures Henry Tan Micah Sherr Georgetown University Georgetown University Censorship-Resistant Architectures 1 The Censorship Problem Internet censorship is a problem in certain areas of the world. In some cases,

260 views • 15 slides
SINDES Secure INformation DElivery System Poulhis Marc marc.poulhies@cern.ch CERN/EPFL

SINDES Secure INformation DElivery System Poulhis Marc marc.poulhies@cern.ch CERN/EPFL

SINDES Secure INformation DElivery System Poulhis Marc marc.poulhies@cern.ch CERN/EPFL CERN-IT-FIO group meeting p. 1/17 Outline Motivations Previous system New system General overview Getting a certificate

596 views • 31 slides
Public Key Infrastructures Using PKC to solve network security problems Distributing public

Public Key Infrastructures Using PKC to solve network security problems Distributing public

Public Key Infrastructures Using PKC to solve network security problems Distributing public keys P keys allow parties to share secrets over unprotected channels Extremely useful in an open network: Parties are not under a single

420 views • 21 slides
Public Key Infrastructure e-government, e-commerce, e-mail, etc.) Ideally consists of a

Public Key Infrastructure e-government, e-commerce, e-mail, etc.) Ideally consists of a

Public Key Infrastructure A system to securely distribute & manage public keys. Important for wide-area trust management (for Public Key Infrastructure e-government, e-commerce, e-mail, etc.) Ideally consists of a

402 views • 3 slides
An Experience in Developing Common Certificate Policy 9 April 2008, Academia Sinica, Taipei,

An Experience in Developing Common Certificate Policy 9 April 2008, Academia Sinica, Taipei,

International Symposium on Grid Computing 2008 An Experience in Developing Common Certificate Policy 9 April 2008, Academia Sinica, Taipei, Taiwan Shinichi Mineo (RIKEN) Outline MOTIVATION FEATURES OF RFC3647 A CASE IN NAREGI

193 views • 17 slides
Collective Certificate Management Robin Berguerand School of Computer and Communication Sciences

Collective Certificate Management Robin Berguerand School of Computer and Communication Sciences

Collective Certificate Management Robin Berguerand School of Computer and Communication Sciences Decentralized and Distributed Systems lab Bachelor Project Supervisor Responsible Philipp Jovanovic Prof. Bryan Ford EPFL / DEDIS EPFL / DEDIS

452 views • 22 slides
Key Agreement Protocol for EPON TaeWhan Yoo (twyoo)*, KyungSoo Han (kshan)*, KwangJo Kim (kkj)**,

Key Agreement Protocol for EPON TaeWhan Yoo (twyoo)*, KyungSoo Han (kshan)*, KwangJo Kim (kkj)**,

Link Security Presentation Key Agreement Protocol for EPON TaeWhan Yoo (twyoo)*, KyungSoo Han (kshan)*, KwangJo Kim (kkj)**, SuGil Choi (sooguri)**, SungJun Min (sjmin)** * Electronics and Telecommunications Research Institute ( @etri.re.kr )

840 views • 20 slides
VII Consortium SCMS Manager Considerations AASHTO ITS Working Group December 3, 2014 This

VII Consortium SCMS Manager Considerations AASHTO ITS Working Group December 3, 2014 This

VII Consortium SCMS Manager Considerations AASHTO ITS Working Group December 3, 2014 This presentation represents work underway at VIIC under cooperative projects with the USDOT The views and findings herein are those of VIIC alone and not

558 views • 18 slides
Wage and Hour Division Section 14(c) Today: Keys to Compliance Presented by Helen M.

Wage and Hour Division Section 14(c) Today: Keys to Compliance Presented by Helen M.

Wage and Hour Division Section 14(c) Today: Keys to Compliance Presented by Helen M. Applewhaite and John Winstead U.S. Department of Labor Wage and Hour Division Disclaimer The presentation is intended as general information only and

324 views • 30 slides
Security Threats in Vehicular Ad Hoc Networks Ahmed Shoeb Al Hasan 1 , Md. Shohrab Hossain 1 , and

Security Threats in Vehicular Ad Hoc Networks Ahmed Shoeb Al Hasan 1 , Md. Shohrab Hossain 1 , and

2016 Intl. Conference on Advances in Computing, Communications and Informatics (ICACCI), Sept. 21-24, 2016, Jaipur, India Security Threats in Vehicular Ad Hoc Networks Ahmed Shoeb Al Hasan 1 , Md. Shohrab Hossain 1 , and Mohammed Atiquzzaman 2 1

460 views • 8 slides
ASEAN Single Window Authentication Requirements Thailand Perspective Context of ASEAN Single

ASEAN Single Window Authentication Requirements Thailand Perspective Context of ASEAN Single

ASEAN Single Window Authentication Requirements Thailand Perspective Context of ASEAN Single Window ASEAN Community Blue Print (2007) Transform ASEAN, by 2015, into a single market and production base, Highly competitive; equitable

166 views • 12 slides
Studios require higher robustness content protection systems for newer higher resolution video

Studios require higher robustness content protection systems for newer higher resolution video

Studios require higher robustness content protection systems for newer higher resolution video formats DTCP2 developed for Enhanced Image (e.g., 4K, 8K, HDR) as well as current audiovisual formats Address marketplace concerns

713 views • 25 slides
SHORT TERM VACATION RENTAL ORDINANCE 1) How is housing changing? 2) What is the problem we are

SHORT TERM VACATION RENTAL ORDINANCE 1) How is housing changing? 2) What is the problem we are

SHORT TERM VACATION RENTAL ORDINANCE 1) How is housing changing? 2) What is the problem we are trying to solve? 3) How does the proposed ordinance address the problem? HOW IS HOUSING CHANGING? MORE PEOPLE ARE WORKING AT HOME...

531 views • 17 slides
Mediated Signatures - Towards Advanced Undeniability of Digital Data in Technical Digital

Mediated Signatures - Towards Advanced Undeniability of Digital Data in Technical Digital

M. Kutyowski Mediated Signatures - Towards Advanced Undeniability of Digital Data in Technical Digital Signatures Qualified Signatures and Legal Framework Validity of the Signature Standard Implementation Risk Issues Reasons of

436 views • 42 slides
Welcome to Do Not Pay Day July 23, 2019 Do Not Pay Business Center Agency Engagement

Welcome to Do Not Pay Day July 23, 2019 Do Not Pay Business Center Agency Engagement

Welcome to Do Not Pay Day July 23, 2019 Do Not Pay Business Center Agency Engagement Introduction to DNP Anglique Bridges July 23, 2019 Do Not Pay Authorities The Improper Payments Elimination and Recovery Improvement Act of 2012

1.37k views • 105 slides
Mauricio Siciliano ICAO MRTD Officer Overview 1. How do we got here? 2. What do we do? 1.

Mauricio Siciliano ICAO MRTD Officer Overview 1. How do we got here? 2. What do we do? 1.

Regional Seminar on MRTDs, Biometrics and Identification Management Sint Maarten, 9-11 July 2013 ICAO Global Leadership in Setting MRTD Standards and Regulatory Framework Mauricio Siciliano ICAO MRTD Officer Overview 1. How do we got here?

730 views • 44 slides
58.01.03 Individual/ Subsurface Sewage Disposal Rules Docket No. 58-0103-1501 1 P r e s e

58.01.03 Individual/ Subsurface Sewage Disposal Rules Docket No. 58-0103-1501 1 P r e s e

58.01.03 Individual/ Subsurface Sewage Disposal Rules Docket No. 58-0103-1501 1 P r e s e n t e d B y : TYLE R F OR TU N ATI , M S I H , R E H S O N - S I T E W A S T E W A T E R C O O R D I N A T O R ( 2 0 8 ) 3 7 3 - 0 1 4 0 o r

582 views • 37 slides
Presentation to Western States Surplus Lines Conference AB 315: California NRRA Implementing

Presentation to Western States Surplus Lines Conference AB 315: California NRRA Implementing

Presentation to Western States Surplus Lines Conference AB 315: California NRRA Implementing Legislation July 25, 2011 James R. Woods Co-Chair, Global Insurance Sector Practice Dewey & LeBoeuf LLP Phone: (650) 845-7305 Email:

416 views • 15 slides
EGU Congress Paris February 2018 DTO/Medical Meike MLLER EGU Timeline RMT.0701 ToR

EGU Congress Paris February 2018 DTO/Medical Meike MLLER EGU Timeline RMT.0701 ToR

EGU Congress Paris February 2018 DTO/Medical Meike MLLER EGU Timeline RMT.0701 ToR December 2016 Phase 1 Lead by EGU September 2016- February 2018 Phase 2 EASA +Task force group March 2018- May 2018 Workshop June 26, 2018

728 views • 23 slides
DBE Certification Workshop Tappan Zee Bridge Project MTA Department of Diversity & Civil

DBE Certification Workshop Tappan Zee Bridge Project MTA Department of Diversity & Civil

DBE Certification Workshop Tappan Zee Bridge Project MTA Department of Diversity & Civil Rights 0 NYS UNIFIED CERTIFICATION PROGRAM (NYSUCP) Program Components One-Stop Shopping for Applicants Reciprocity Among Certifying

494 views • 21 slides

More recommend