cryptography in lotus notes domino pragmatic introduction
play

Cryptography in Lotus Notes/Domino Pragmatic Introduction for - PowerPoint PPT Presentation

Feb 23, 2023 •242 likes •1.15k views

Cryptography in Lotus Notes/Domino Pragmatic Introduction for Administrators Belfast, 11-Nov-2010 Innovative Software Solutions. www.assono.de Thomas Bahn - graduated in mathematics, University of Hannover - developing in Java and RDBMS

  1. Cryptography in Lotus Notes/Domino – Pragmatic Introduction for Administrators Belfast, 11-Nov-2010 Innovative Software Solutions. www.assono.de

  2. Thomas Bahn - graduated in mathematics, University of Hannover - developing in Java and RDBMS since 1997 - dealing with Notes/Domino since 1999: development, administration, consulting and trainings - frequent speaker at technical conferences about IBM Lotus Notes/Domino and author for THE VIEW tbahn@assono.de www.assono.de/blog +49/4307/900-401 Seite 2 www.assono.de

  3. Agenda - Modern Cryptography – The Basics - Encryption & Decryption - Hash Functions and Electronic Signatures - Notes and Domino - Certificates and ID files - Encryption & Decryption - Electronic Signatures - Internet Seite 3 www.assono.de

  4. Agenda - Modern Cryptography – The Basics - Encryption & Decryption - Hash Functions and Electronic Signatures - Notes and Domino - Certificates and ID files - Encryption & Decryption - Electronic Signatures - Internet Seite 4 www.assono.de

  5. Modern Cryptography – The Basics - Cryptography protects information by creating a cipher text from a plain text , thus only appointed persons can get to the protected information, - where as steganography hides the information itself. - Encryption is the process of transforming plain text into cipher text . - Decryption is the process of transforming cipher text back into plain text . Seite 5 www.assono.de

  6. Modern Cryptography – The Basics (cont.) - First encryption techniques based on keeping the algorithms secret. - “Security by Obscurity” - inflexible - vulnerable - Modern techniques nearly all use known algorithms with changing parameter values, called keys . - A good encryption method is - publically known and available and - tested by many specialists for vulnerabilitys. Seite 6 www.assono.de

  7. The Ultimate Encryption Method - There is a mathematically proven 100% secure encryption method. - It's easy to implement. - It's absolutely fast. - It's known for many, many years. - It's called the one-time pad . - And it's nearly useless... Seite 7 www.assono.de

  8. One-Time Pad - based on a key of the same length as the plain text - Key must be created absolutely randomly . - Each key must be used only once (hence “one- time”). - Key must be transferred to the reader. - You replaced the problem of securely transporting the message by transporting the key... - Only one advantage: You can create and distribute a list of keys in advance (e.g. in the form of a pad). - But the list could be “found” in the meantime. Seite 8 www.assono.de

  9. Symmetric Methods - In symmetric algorithms , the same key is used for encryption and decryption. - You have always the problem to securely transfer the key and keep it secret. - You need to have a different key for each recipient. Seite 9 www.assono.de

  10. Symmetric Method: RC2 - 64 bit block cipher by Ronald Rivest, 1987 - RC: Rivest Cipher or Ron’s Code - created for Lotus - “exportable” from US - algorithm was kept secret - published 1996 in the Usenet - in Notes: - field encryption - encryption of ID files Seite 10 www.assono.de

  11. Symmetric Method: RC4 - stream cipher by Ronald Rivest, 1987 - variable key length (8 to 128 bit, normally 64 bit) - Algorithm creates a “random” key of any length, which is used like in the one-time pad technique. - It was kept secret, but published 1994 in the Usenet. - simple to implement - very fast - weak for short messages - in Notes: - network-encryption Seite 11 www.assono.de

  12. Symmetric Method: AES - Advanced Encryption Standard, October 2000 - Algorithm chosen as new encryption standard to succeed DES and Triple-DES. - It was created by Vincent Rijmen and Joan Daemen: Rijndael algorithm. - in Notes 8+: - encryption of ID files - SSL Seite 12 www.assono.de

  13. Mathematical Excursion - one-way function : easy to calculate, hard to invert - a b mod n is such a one-way function. - Inversion is called discrete logarithm . - No efficient algorithm is known (yet) to calculate the discrete logarithm. - Multiplication of (big) prime numbers is another one- way function, its inversion is called factorisation . - trapdoor function : one-way function with a shortcut for the inversion (= decryption) Seite 13 www.assono.de

  14. Key Distribution Problem - Diffie-Hellman(-Merkle) key exchange - discovered 1974 by Whitfield Diffie, Martin Hellman and Ralph Merkle - Key itself is calculated on both sides, not transferred. - Both sides keep a secret (a and b). - K is used as key. - This key and a symmetric algorithm is used for encryption. Seite 14 www.assono.de

  15. RSA - RSA , created 1977 by Ronald L. Rivest, Adi Shamir und Leonard Adleman - most important and known asymmetric algorithm - more flexible then DH(M), can by used for encryption - It is based on the multiplication of big prime numbers, - with a shortcut for decryption. - in Notes: - ID files - encrypted emails Seite 15 www.assono.de

  16. Asymmetric Methods - Asymmetric algorithms use different keys for encryption and decryption. - The key used to encrypt a message for you can be public , e.g. published in a directory, key server etc. - The key used to decrypt must be kept private , thus nobody but you can decrypt messages intended for you. Seite 16 www.assono.de

  17. Asymmetric Methods (cont.) - No more key transport problem! - And the secret private key is only stored once in your environment (no need to transport). - The same public key can be used by all senders. - Many asymmetric algorithms are symmetric in another way: Messages encrypted with the private key can only be decrypted with the public key. - Only the owner has the private key, and if the cipher text can be decrypted with his public key, it must be him, who encrypted the message. Seite 17 www.assono.de

  18. Symmetric vs. Asymmetric - Symmetric algorithms are faster at same level of security, - but have the key distribution problem. - What to do? Seite 18 www.assono.de

  19. Hybrid Algorithms - Combine both methods: - A random key is created and distributed with DH(M) or RSA. - This random key is used to encrypt the message with a symmetric algorithm. - Only the appointed recipient can decrypt the key and with it the ciper text. - For more recipients, you only have to encrypt the (short) random key multiple times, not the whole message. Seite 19 www.assono.de

  20. Agenda - Modern Cryptography – The Basics - Encryption & Decryption - Hash Functions and Electronic Signatures - Notes and Domino - Certificates and ID files - Encryption & Decryption - Electronic Signatures - Internet Seite 20 www.assono.de

  21. Hash Functions - Hash functions return results with a constant length. - example: modulo operation, @Password function Seite 21 www.assono.de

  22. Hash Functions (cont.) - Minimal changes to the input result in maximal changes of the output. - Cryptographic hash functions : Changing one bit of the input results in an average change of the output of 50%. - known algorithms: MD4, MD5, SHA-1 - in Notes: - SSL - signed documents and emails Seite 22 www.assono.de

  23. Electronic Signatures - also a hybrid technique - The hash of the message is calculated, encrypted (e.g. with RSA) and send along with the message. - Everybody can decode the encrypted hash value and calculate the hash of the message himself. - If both values are identical, the message hasn't been changed and was created by the original sender. Seite 23 www.assono.de

  24. It's All About Trust - Digital data can easily be changed – without any traces. - Electronic signatures can prove the authenticity and integrity, but the public key must be genuine . - If somebody you trust had electronically signed the name (e.g. NotesName) of the other person together with his public key, this would prove its genuineness. - The name, public key and this signature together are called certificate . - Normally, certificates have only a limited lifetime and must be prolonged (=recertified) to remain valid. Seite 24 www.assono.de

  25. It's All About Trust (cont.) - The trusted entity creating certificates is called certifier or certification authority ( CA ). - You can also easily have a complete hierarchy of CAs. - This is called public key infrastructure ( PKI ). - in Notes: - registration of new certifiers, servers and users - CA process - ID files - authentication (client-server or server-server) Seite 25 www.assono.de

  26. Agenda - Modern Cryptography – The Basics - Encryption & Decryption - Hash Functions and Electronic Signatures - Notes and Domino - Certificates and ID files - Encryption & Decryption - Electronic Signatures - Internet Seite 26 www.assono.de

  27. Certificates and ID files in Notes and Domino - When you create a Domino infrastructure and configure your first server, a certifier ID is created. - This is the certifier = Certification Authority for the new organisation and used to sign every other ID. - Like any other ID file, it contains (among other things) the NotesName , current date, expiration date, the public and the private key along with the electronic signature of all this information, i.e. the certificate . - The certified public key is also stored in the Domino Directory. - OU certifier and their ID files are similar. Seite 27 www.assono.de

  28. A Certifier Document in the Domino Directory Seite 28 www.assono.de

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Novidades 6 .5 Domino Server 6.5 Domino Designer 6.5 Notes 6.5 Domino Web Access Lotus

Novidades 6 .5 Domino Server 6.5 Domino Designer 6.5 Notes 6.5 Domino Web Access Lotus

Novidades 6 .5 Domino Server 6.5 Domino Designer 6.5 Notes 6.5 Domino Web Access Lotus Enterprise Integrator (LEI) Dom ino Server 6 .5 Novas Plataformas Domino 6.5 support the Linux on zSeries (S390) Windows Server 2003 platforms. Domino

202 views • 16 slides
Lotus Notes & Domino 8: New Interface, New Features, New Gadgets Whats New? Notes 8.0

Lotus Notes & Domino 8: New Interface, New Features, New Gadgets Whats New? Notes 8.0

www.uwindsor.ca/its Lotus Notes & Domino 8: New Interface, New Features, New Gadgets Whats New? Notes 8.0 released August 2007 ITS Notes Team has been regular Notes 8 users ever since Decided to wait until 8.0.1 released

808 views • 64 slides
Lotus Domino: Penetra0on Through the Controller Alexey Sintsov

Lotus Domino: Penetra0on Through the Controller Alexey Sintsov

Invest in security to secure investments Lotus Domino: Penetra0on Through the Controller Alexey Sintsov #whoami Pen-tester at ERPscan Company Job

691 views • 44 slides
The difference between hearing and hearing Domino , R2 Domino Classic | Introduction

The difference between hearing and hearing Domino , R2 Domino Classic | Introduction

Domino Classic The difference between hearing and hearing Domino , R2 Domino Classic | Introduction Listening situations EASY 1-on-1 conversation Watching TV Small meeting Family gathering In a store Outdoors Conference In class

599 views • 26 slides
Domino Personal listening system A presentation Domino , R3 Domino | Features Domino Uses

Domino Personal listening system A presentation Domino , R3 Domino | Features Domino Uses

Domino Personal listening system A presentation Domino , R3 Domino | Features Domino Uses digital signal processing to deliver clear and distinct speech Features encryption technology so there is no risk of eavesdropping Is easy to use

458 views • 41 slides
Synthesis and optimization of domino logic Min Zhao and Sachin Sapatnekar Department of

Synthesis and optimization of domino logic Min Zhao and Sachin Sapatnekar Department of

Synthesis and optimization of domino logic Min Zhao and Sachin Sapatnekar Department of Electrical Engineering University of Minnesota Minneapolis, MN 55455 1 Outline I Introduction to domino logic I Domino logic synthesis flow I Technology

231 views • 20 slides
LOTUS DKM Nod Nodular ular and and Gray ay Ir Iron on Octob tober 2018 2018 LOTUS

LOTUS DKM Nod Nodular ular and and Gray ay Ir Iron on Octob tober 2018 2018 LOTUS

LOTUS DKM Nod Nodular ular and and Gray ay Ir Iron on Octob tober 2018 2018 LOTUS PLANTS MACHINING WORKSHOP FOUNDRY in ANKARA i n ANKIRI LOTUS FOUNDRY 5.000 m 2 closed working area 80 workers (1 metalurgical engineer, 4

472 views • 28 slides
LOTUS DKM Nodular and Gray Iron December 2019 LOTUS PLANTS MACHINING WORKSHOP FOUNDRY in

LOTUS DKM Nodular and Gray Iron December 2019 LOTUS PLANTS MACHINING WORKSHOP FOUNDRY in

LOTUS DKM Nodular and Gray Iron December 2019 LOTUS PLANTS MACHINING WORKSHOP FOUNDRY in ANKARA in ANKIRI LOTUS FOUNDRY 7.500 m 2 closed working area 80 workers (2 metalurgical engineer, 1 mechanical engineer, 2 casting

482 views • 27 slides
Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do?

Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do?

PQCRYPTO Summer School on Post-Quantum Cryptography 2017 Stefan Klbl June 20th, 2017 DTU Compute, Technical University of Denmark Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do? Authentication

711 views • 47 slides
Lotus Silk Lotus Silk & Boutique was established in 2003 with the aim to design contemporary

Lotus Silk Lotus Silk & Boutique was established in 2003 with the aim to design contemporary

Lotus Silk Lotus Silk & Boutique was established in 2003 with the aim to design contemporary and unique clothing, scarf & shawl, Bag & Purse, fashion accessories and home ware. Products are all handmade with silk and/or cotton.

549 views • 18 slides
Audit Manager Project Chef: Neil Gower Overview Audit Manager is designed to monitor and log

Audit Manager Project Chef: Neil Gower Overview Audit Manager is designed to monitor and log

Audit Manager Project Chef: Neil Gower Overview Audit Manager is designed to monitor and log changes to specific documents in Lotus Notes and Domino applications. Configuration documents etc Sensitive documents etc Not

537 views • 17 slides
Social (Pragmatic) Communication Disorder Nosheen Qadeer Introduction Social (pragmatic)

Social (Pragmatic) Communication Disorder Nosheen Qadeer Introduction Social (pragmatic)

Social (Pragmatic) Communication Disorder Nosheen Qadeer Introduction Social (pragmatic) communication disorder is characterized by difficulty with the use of social language and communication skills (also called pragmatic communication by

281 views • 14 slides
Lets count: Domino tilings Christopher R. H. Hanusa Queens College, CUNY 2 n 3 n n n

Lets count: Domino tilings Christopher R. H. Hanusa Queens College, CUNY 2 n 3 n n n

Lets count: Domino tilings Christopher R. H. Hanusa Queens College, CUNY 2 n 3 n n n Aztec Domino Tilings Today well discuss domino tilings, where: Our board is made up of squares. Our dominoes have no spots and all look

1.36k views • 122 slides
Pragmatic Agility Pragmatic Agility Presented by: Andy Hunt The Pragmatic Programmers

Pragmatic Agility Pragmatic Agility Presented by: Andy Hunt The Pragmatic Programmers

W11 Concurrent Session Wednesday 11/12/2008 12:45 PM 2:15 PM Pragmatic Agility Pragmatic Agility Presented by: Andy Hunt The Pragmatic Programmers Presented at: Agile Development Practices 2008 November 10 - 14, Orlando, FL., USA 330

61 views • 3 slides
Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security

Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security

PQCRYPTO Summer School on Post-Quantum Cryptography 2017 Stefan Klbl June 19th, 2017 DTU Compute, Technical University of Denmark Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security fail?

758 views • 72 slides
Introduction to Cryptography Summarized from Applied Cryptography, Protocols, Algorithms, and

Introduction to Cryptography Summarized from Applied Cryptography, Protocols, Algorithms, and

Introduction to Cryptography Summarized from Applied Cryptography, Protocols, Algorithms, and Source Code in C , 2nd. Edition, Bruce Schneier, John Wiley & Sons, Inc. Outline Cryptographic Protocols Introduction Introduction

759 views • 45 slides
Assessing Migration Risk for Scientific Formats Chris Frisz, Sam Waggoner, and Geoffrey Brown

Assessing Migration Risk for Scientific Formats Chris Frisz, Sam Waggoner, and Geoffrey Brown

Assessing Migration Risk for Scientific Formats Chris Frisz, Sam Waggoner, and Geoffrey Brown Indiana University Bloomington Presented 7 December 2011 Chris Frisz, Sam Waggoner, and Geoffrey Brown Indiana University Bloomington Assessing

1.82k views • 147 slides
PETALS: Improving Learning of Expert Skill in Humanitarian Demining Lahiru Jayatilaka (Red Lotus

PETALS: Improving Learning of Expert Skill in Humanitarian Demining Lahiru Jayatilaka (Red Lotus

PETALS: Improving Learning of Expert Skill in Humanitarian Demining Lahiru Jayatilaka (Red Lotus Technologies) David M. Sengeh (IBM Research - Africa) Charles Herrmann (Cornell University) Luca Bertuccelli (Sensitech) Dimitrios Antos (Verily Life

674 views • 54 slides
Who Says Elephants Cant Dance? How IBMs digital marketing leaders drove change and

Who Says Elephants Cant Dance? How IBMs digital marketing leaders drove change and

Who Says Elephants Cant Dance? How IBMs digital marketing leaders drove change and optimized website usability Marjorie J. Madfis, Worldwide Editor, IBM Software home page Daniel Burstein, Director of Editorial Content, MECLABS Presenters

439 views • 13 slides
Cylc from the NCAS point of view (NCAS Experience with Rose/Cylc) Rosalyn Hatcher, Annette

Cylc from the NCAS point of view (NCAS Experience with Rose/Cylc) Rosalyn Hatcher, Annette

Cylc from the NCAS point of view (NCAS Experience with Rose/Cylc) Rosalyn Hatcher, Annette Osprey, NCAS-CMS (Grenville Lister) Joint final IS-ENES2 workshop on Workflow Solutions in Earth System Modelling and Meta-Data Generation during

223 views • 19 slides
Part II: NLP Applications: Statistical Machine Translation Stephen Clark 1 How do Google do

Part II: NLP Applications: Statistical Machine Translation Stephen Clark 1 How do Google do

Part II: NLP Applications: Statistical Machine Translation Stephen Clark 1 How do Google do it? Nobody in my team is able to read Chinese characters, says Franz Och, who heads Google s machine-translation (MT) effort. Yet, they

1.29k views • 22 slides
Fixslicing: A New GIFT Representation Fast Constant-Time Implementations of GIFT and GIFT-COFB on

Fixslicing: A New GIFT Representation Fast Constant-Time Implementations of GIFT and GIFT-COFB on

Fixslicing: A New GIFT Representation Fast Constant-Time Implementations of GIFT and GIFT-COFB on ARM Cortex-M Alexandre Adomnicai 1,2 Zakaria Najm 1,2,3 Thomas Peyrin 1,2 1 Nanyang Technological University, Singapore 2 Temasek Laboratories,

457 views • 34 slides
Three types of information systems: Information-Retrieval Systems (IR) Search large bodies

Three types of information systems: Information-Retrieval Systems (IR) Search large bodies

Three types of information systems: Information-Retrieval Systems (IR) Search large bodies of information which are not specifically formatted as formal data bases. Web search engine Keyword search of a text base Typically

352 views • 12 slides
Co mmo n F e ature s o f K ille r Apps: A Comparison with Protg Harith Alani, Kieron

Co mmo n F e ature s o f K ille r Apps: A Comparison with Protg Harith Alani, Kieron

Co mmo n F e ature s o f K ille r Apps: A Comparison with Protg Harith Alani, Kieron OHara, and Nigel Shadbolt The 8 th Int. Protg Conference, Madrid, 2005 K ille r Apps! What are they? Highly transformative technologies

677 views • 28 slides

More recommend