name es
play

NAME-ES 20 novembre 2002 Yves Leroux, David Ankri, Fabrice Scemama - PDF document

Apr 09, 2023 •367 likes •471 views

STORCK 2002 conference IST project :Smart IS Accompanying Measure NAME-ES 20 novembre 2002 Yves Leroux, David Ankri, Fabrice Scemama SISGEM Agenda Why NAME and NAME-ES ? Different perspectives about signature Cryptographic

  1. STORCK 2002 conference IST project :Smart IS Accompanying Measure NAME-ES 20 novembre 2002 Yves Leroux, David Ankri, Fabrice Scemama SISGEM Agenda • Why NAME and NAME-ES ? • Different perspectives about signature • Cryptographic Options • Role of Smart card in this environment • NAME ES Module Specifications • Recommendations for implementation • Document presented to various European Bodies • Next Challenge 1

  2. NAME & NAME-ES • NAME ( N etwork A uthentication M odule for Internet E nd-users) covers only authentication • NAME.ES ( N etwork A uthentication M odule for Internet E nd-users with advanced E lectronic S ignatures functions) covers both Authentication and Signatures INTEROPERABLE SOLUTIONS: Public Key Infrastructure(PKI) Certification Directory Authority Name digital certificate User Services The Global Security Standard for IP Networks 2

  3. SMART IS NAME ES : • USER ID • X509 V3 certificate • Issuer REFERENCE • KS and others • Add. Functions ES, • Options , ... Authentication and signature requirements Table extracted from WG3 Report : Requirements of terminal manufacturers and convergence model for multi-platform access to services 3

  4. Different perspectives about signature Four different perspectives: • Business – How will the electronic signature be unique to the individual? – How will the electronic signature be reliably verified? – How will the electronic document retain integrity over its life cycle to detect alteration from the original intent of the signer? Different perspectives about signature • Legal – Minimalist Approach • US Electronic Signatures in Global and National Commerce Act ("E-SIGN") – Prescriptive Approach • Germany, Malaysia, Argentina – “Two-tier” Approach • EU Digital Signatures Directive 4

  5. Different perspectives about signature • Functional – Signatures as Identification – Signatures as Authentication – Signatures as declaration of knowledge – Signatures as declaration of will Different perspectives about signature • Technical 5

  6. Cryptographic Options • Signature Scheme – Conventional – Special • One-time digital signature • Arbitrated signature • Blind Signature • Infrastructures – Public Key Infrastructure • Repartition of the different functions needed – Web of Trust – Secret Key Infrastructure Role of Smart card in this environment • Current proposed functions splits in the EESSI – CEN/ISSS CWA 14169 and 14170 – CEN/ISSS WS/E-Sign N 0195 – ETSI -ESI WG • Others proposed functions splits – Identrus – WIM – EID – EMV 6

  7. NAME ES Module Specifications • The signature Schema used will be PKCS #1,11 , 15 , compliant with a Public Key Infrastructure. Consequently, the NAME-ES module must be able to handle X509 certificates. • Document hashing inside the module seems to be currently highly time consuming consequently, we have decided to put it optional . • In order to avoid legal discussion and potential usage restrictions, document Encryption/decryption inside the module has been put optional. NAME ES Module Specifications • As proposed in TB1 proposal V 0.14 “requirements for a EID Card”, the NAME-ES module shall contain at least two separate keys and certificates, where one key pair is used for authentication and encryption , and a second separate key pair for the qualified electronic signature (non repudiation). However, a three key pair EID-card is also perfectly valid, and complying applications shall be able to handle such cards. • For security reason, RSA Key pair generation inside the module has been put mandatory 7

  8. Services using electronic signature Secure A ID ES functions: “kernel cardlet” NAME -ES Users Banks and Government Telecom Large Enterprises financial institutions Secure email & file encryption with standard email products Applications Extranet /intranet, VPN, remote access, Single Sign On Internet banking/I-Commerce, workflow PKI products CA system Client side PKI Server side PKI Standards RSA PKCS SSL S/MIME SEIS X.509 LDAP SET RSA PKCS SSL S/MIME SEIS X.509 LDAP SET Next Challenge The challenge with smart card issuance is not only in countering public concerns about security and privacy. Smart cards will take hold, and these concerns will be alleviated, only if there is sufficient incentive for people to use the cards: >AUTHENTICATION and E- SIGN/NAME ES FOR CITIZEN & ENTERPRISES EGOVERNMENT APPLICATIONS 8

  9. SERVICES C to G : forms on line , tele-declarations ,e-services CITIZEN home/ PC KEY MANAGEMENT FILESECURITY Internet Sécurité E-mail Computing Center INCOMES DECLARATION Taxes Office FORMS INCOMES DECL. Site Web / Taxes Office Thank you Name-ES Document is available at http://www.smartis.org/minutes/pdf/NAME-ES_V01-20-06-02.pdf For more details,suggestions and contributions to this document, feel free to contact: David ANKRI dankri@smartismarketing.com Fabrice SCEMAMA fscemama@smartismarketing.com NEXT END USERS CONFERENCE 6 NOV CARTES 2002 9

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Delegatable Functional Signatures Michael Backes, Sebastian Meiser , Dominique Schrder Public

Delegatable Functional Signatures Michael Backes, Sebastian Meiser , Dominique Schrder Public

Delegatable Functional Signatures Michael Backes, Sebastian Meiser , Dominique Schrder Public Key Cryptography, March 7, 2016, Taipei What is a malleable Signature? Alice (original signer) Alice signed this message! We introduce del

442 views • 31 slides
Computer Security: Public Key Crypto B. Jacobs Institute for Computing and Information Sciences

Computer Security: Public Key Crypto B. Jacobs Institute for Computing and Information Sciences

Public key crypto RSA Essentials Public Key Crypto in Java Radboud University Nijmegen Public key protocols Diffie-Hellman and El Gamal Computer Security: Public Key Crypto B. Jacobs Institute for Computing and Information Sciences

1.23k views • 100 slides
Identity Stefan Thomas, CTO Agenda Goals Terminology What can decentralized

Identity Stefan Thomas, CTO Agenda Goals Terminology What can decentralized

Identity Stefan Thomas, CTO Agenda Goals Terminology What can decentralized networks contribute? Better Identity Provider Public attestation Stefan Thomas, CTO Goals What are we trying to solve? Authentication

520 views • 19 slides
C.c) DSA and Diffie-Hellman W. Schindler: Cryptography, B-IT, winter 2006 / 2007 2 C.73 DSA

C.c) DSA and Diffie-Hellman W. Schindler: Cryptography, B-IT, winter 2006 / 2007 2 C.73 DSA

1 C.c) DSA and Diffie-Hellman W. Schindler: Cryptography, B-IT, winter 2006 / 2007 2 C.73 DSA (Digital Signature Algorithm) standardized by NIST A) Generation of a key pair Select a prime q with 2 159 < q < 2 160 Select a

348 views • 11 slides
Proving tight security for Rabin-Williams signatures D. J. Bernstein Public-key signatures 1976

Proving tight security for Rabin-Williams signatures D. J. Bernstein Public-key signatures 1976

Proving tight security for Rabin-Williams signatures D. J. Bernstein Public-key signatures 1976 Diffie Hellman: Public-key signatures would allow verification by anyone, not just signer. Cool! Can we build a signature system? 1977 Rivest

743 views • 33 slides
Privacy-preserving electronic civic infrastructure Andrew J. Blumberg

Privacy-preserving electronic civic infrastructure Andrew J. Blumberg

Privacy-preserving electronic civic infrastructure Andrew J. Blumberg (blumberg@math.utexas.edu) Andrew J. Blumberg (blumberg@math.utexas.edu) Privacy-preserving electronic civic infrastructure Objective: design potentially invasive

532 views • 24 slides
Multi-Signatures for Blockchains Yannick Seurin Agence nationale de la scurit des systmes

Multi-Signatures for Blockchains Yannick Seurin Agence nationale de la scurit des systmes

Multi-Signatures for Blockchains Yannick Seurin Agence nationale de la scurit des systmes dinformation June 12, 2019 LINCS Blockchain Day Y. Seurin (ANSSI) Multi-Signatures for Blockchains 12/06/2019 1 / 17 Uses of cryptography

921 views • 68 slides
Union, Intersection, and Refinement Types and Reasoning about Type Disjointness for Security

Union, Intersection, and Refinement Types and Reasoning about Type Disjointness for Security

Union, Intersection, and Refinement Types and Reasoning about Type Disjointness for Security Protocol Analysis C t lin Hri cu Prof. Dr. Holger Hermanns (UdS) Dean of Math and CS Faculty Prof. Dr. Gert Smolka (UdS) Chair of Examination

1.39k views • 107 slides
Low-Rank Decomposition of Multi-Way Arrays: A Signal Processing Perspective Nikos Sidiropoulos

Low-Rank Decomposition of Multi-Way Arrays: A Signal Processing Perspective Nikos Sidiropoulos

TUC & UMN Nikos Sidiropoulos / SAM 2004, July 18-21, 2004, Sitges, Barcelona, Spain Low-Rank Decomposition of Multi-Way Arrays: A Signal Processing Perspective Nikos Sidiropoulos Dept. ECE, TUC-Greece & UMN-U.S.A

796 views • 35 slides
The Forgotten Art of Anonymous Digital Cash Jonathan Smuggler Logan Before the Chains

The Forgotten Art of Anonymous Digital Cash Jonathan Smuggler Logan Before the Chains

The Forgotten Art of Anonymous Digital Cash Jonathan Smuggler Logan Before the Chains Blockchain currencies were not the first digital non-government money The past is widely forgotten Im here from the past or from

402 views • 23 slides
Cryptography Crash Course Symmetric Key Cryptography School on Secure IoT, 2016 Dr. Ir. Jens

Cryptography Crash Course Symmetric Key Cryptography School on Secure IoT, 2016 Dr. Ir. Jens

Cryptography Crash Course Symmetric Key Cryptography School on Secure IoT, 2016 Dr. Ir. Jens Hermans KU Leuven/COSIC Cryptology: basic principles Eve Alice Bob CRYP CRYP Clear Clear %^C& %^C& TOB TOB @&^( @&^(

1.32k views • 119 slides
Can Charlie distinguish Alice and Bob? Automated verification of equivalence properties Steve

Can Charlie distinguish Alice and Bob? Automated verification of equivalence properties Steve

Can Charlie distinguish Alice and Bob? Automated verification of equivalence properties Steve Kremer joint work with: Myrto Arapinis, David Baelde, Rohit Chadha, Vincent Cheval, S tefan Ciob ac a, V eronique Cortier, St ephanie

1.09k views • 87 slides
Multi Signature Schemes for RSA Jonas B. Erasmus Thursday 25 th April, 2019 Chair of Network

Multi Signature Schemes for RSA Jonas B. Erasmus Thursday 25 th April, 2019 Chair of Network

Chair of Network Architectures and Services Department of Informatics Technical University of Munich Multi Signature Schemes for RSA Jonas B. Erasmus Thursday 25 th April, 2019 Chair of Network Architectures and Services Department of

500 views • 19 slides
Security considerations for e-voting Motivation National election debacle Outcry for

Security considerations for e-voting Motivation National election debacle Outcry for

Security considerations for e-voting Motivation National election debacle Outcry for improved process 1 Technology Technology improves Travel Transportation Accounting Entertainment Communications Natural

551 views • 28 slides
Efficient Quantum-Immune Keyless Signatures with Identity Risto Laanoja Tallinn University of

Efficient Quantum-Immune Keyless Signatures with Identity Risto Laanoja Tallinn University of

Efficient Quantum-Immune Keyless Signatures with Identity Risto Laanoja Tallinn University of Technology / Guardtime AS May 17, 2014 Estonian CS Theory days at Narva-J oesuu TL; DR Built a practical signature scheme without modular

585 views • 25 slides
Security Models For Everlasting Privacy Athecrypt 2020 Panagiotis Grontas Aris Pagourtzis

Security Models For Everlasting Privacy Athecrypt 2020 Panagiotis Grontas Aris Pagourtzis

Security Models For Everlasting Privacy Athecrypt 2020 Panagiotis Grontas Aris Pagourtzis Alexandros Zacharakis National Technical University Of Athens 07.01.2020 https://eprint.iacr.org/2019/1193 TL;DR Game-based definitions for

628 views • 28 slides
Defeating Malicious Terminals in an Electronic Voting System Daniel Hanley Andre dos Santos

Defeating Malicious Terminals in an Electronic Voting System Daniel Hanley Andre dos Santos

Defeating Malicious Terminals in an Electronic Voting System Daniel Hanley Andre dos Santos Jeff King Georgia Tech Information Security Center Overview Motivation Related Work Protocol Examples Analysis Motivation The

621 views • 29 slides
Analysing privacy-type properties in cryptographic protocols Stphanie Delaune Univ Rennes,

Analysing privacy-type properties in cryptographic protocols Stphanie Delaune Univ Rennes,

Analysing privacy-type properties in cryptographic protocols Stphanie Delaune Univ Rennes, CNRS, IRISA, France Thursday, July 12th, 2018 Cryptographic protocols everywhere ! Cryptographic protocols small programs designed to secure

849 views • 80 slides
Distributive encryption A Baskar (CMI) R Ramanujam (IMSc) S P Suresh (CMI) Automata,

Distributive encryption A Baskar (CMI) R Ramanujam (IMSc) S P Suresh (CMI) Automata,

Distributive encryption A Baskar (CMI) R Ramanujam (IMSc) S P Suresh (CMI) Automata, Concurrency, and Timed Systems CMI January , Outline . . Proof normalization . Complexity lower bound . Size lower

1.08k views • 68 slides
The Realm of the Pairings Paulo S. L. M. Barreto Prolegomena Thanks to the organizers of SAC

The Realm of the Pairings Paulo S. L. M. Barreto Prolegomena Thanks to the organizers of SAC

The Realm of the Pairings Paulo S. L. M. Barreto Prolegomena Thanks to the organizers of SAC 2013 for the invitation! Accompanying paper: joint work with D. Aranha, P. Longa and J. Ricardini. I know Im speaking in a marvelous

648 views • 45 slides
Cryptography and Network Security Lecture 0 Manoj Prabhakaran IIT Bombay Security In this

Cryptography and Network Security Lecture 0 Manoj Prabhakaran IIT Bombay Security In this

Cryptography and Network Security Lecture 0 Manoj Prabhakaran IIT Bombay Security In this course: Cryptography as used in network security Network Devices People Cryptography & Security In this course: Cryptography

634 views • 22 slides
Verifying Cryptographic Protocols in Applied Pi Calculus Mark Ryan Ben Smyth

Verifying Cryptographic Protocols in Applied Pi Calculus Mark Ryan Ben Smyth

Verifying Cryptographic Protocols in Applied Pi Calculus Mark Ryan Ben Smyth M.D.Ryan@cs.bham.ac.uk research@bensmyth.com Cryptoforma 7th April 2010 Cryptographic protocols A cryptographic protocol is a distributed procedure that employs

698 views • 46 slides
A Static Diffie-Hellman Attack on Several Direct Anonymous Attestation Schemes Ernie Brickell 1

A Static Diffie-Hellman Attack on Several Direct Anonymous Attestation Schemes Ernie Brickell 1

A Static Diffie-Hellman Attack on Several Direct Anonymous Attestation Schemes Ernie Brickell 1 Liqun Chen 2 Jiangtao Li 1 1. Intel Corporation, Hillsboro, Oregon, USA 2. Hewlett-Packard Laboratories, Bristol, UK InTrust 2012 Royal Holloway,

827 views • 17 slides
Detecting Attacks, Part 2 CS 161: Computer Security Prof. Vern Paxson TAs: Paul Bramsen, Apoorva

Detecting Attacks, Part 2 CS 161: Computer Security Prof. Vern Paxson TAs: Paul Bramsen, Apoorva

Detecting Attacks, Part 2 CS 161: Computer Security Prof. Vern Paxson TAs: Paul Bramsen, Apoorva Dornadula, David Fifield, Mia Gil Epner, David Hahn, Warren He, Grant Ho, Frank Li, Nathan Malkin, Mitar Milutinovic, Rishabh Poddar, Rebecca

814 views • 26 slides

More recommend