PDF Editor
PDF Converter
Image Converter
Video Converter
Audio Converter
File Compressor
pki

PKI Milan Sova, CESNET EuroCAMP, Porto, 2005-11-07 Public Key - PowerPoint PPT Presentation

Sep 10, 2022 •204 likes •560 views

PKI Milan Sova, CESNET EuroCAMP, Porto, 2005-11-07 Public Key Infrastructure Public key cryptography pair of keys public key (encryption, signature verification) private key (decryption, signing) Infrastructure binding

  1. PKI Milan Sova, CESNET EuroCAMP, Porto, 2005-11-07

  2. Public Key Infrastructure ● Public key cryptography – pair of keys ● public key (encryption, signature verification) ● private key (decryption, signing) ● Infrastructure – binding public keys to identities – public keys management ● revocation, key usage...

  3. PKI Architectures ● PGP – everybody can provide identity assertions – "Web of trust" ● X.509 – defines roles for entities – separated identity providers (Certificate Authorities) – hierarchical management of trust

  4. X.509 PKI

  5. X.509 PKI Roles ● Certificate Authority – certificate issuer ● Registration Authority – identity vetting ● End Entity – private key holder ● Relying Party (“user”) – relies on the certificate

  6. X.509 Certificate

  7. X.509 Certificate - Content ● public key ● validity ● subject names ● issuer names ● key usage restrictions ● operational information – serial number, standard version, policies, CDP, AIA ● issuer signature

  8. X.509 Certificate - Structure Certificate ::= SEQUENCE { tbsCertificate TBSCertificate, signatureAlgorithm AlgorithmIdentifier, signatureValue BIT STRING } TBSCertificate ::= SEQUENCE { version [0] EXPLICIT Version DEFAULT v1, serialNumber CertificateSerialNumber, signature AlgorithmIdentifier, issuer Name, validity Validity, subject Name, subjectPublicKeyInfo SubjectPublicKeyInfo, issuerUniqueID [1] IMPLICIT UniqueIdentifier OPTIONAL, subjectUniqueID [2] IMPLICIT UniqueIdentifier OPTIONAL, extensions [3] EXPLICIT Extensions OPTIONAL }

  9. X.509 Certificate - Structure Version ::= INTEGER { v1(0), v2(1), v3(2) } CertificateSerialNumber ::= INTEGER Validity ::= SEQUENCE { notBefore Time, notAfter Time } Time ::= CHOICE { utcTime UTCTime, generalTime GeneralizedTime } UniqueIdentifier ::= BIT STRING SubjectPublicKeyInfo ::= SEQUENCE { algorithm AlgorithmIdentifier, subjectPublicKey BIT STRING } Extensions ::= SEQUENCE SIZE (1..MAX) OF Extension

  10. Validity ● notBefore ● notAfter – dates

  11. Naming ● Distinguished Name ( Subject , Issuer ) – sequence of sets of attribute-value pairs – highly structured, hierarchical – looks like a globally unique ID – in fact just an "opaque string"

  12. Naming 2 ● using existing managed name systems – DNS – RFC822 – IP Addresses ● subjectAltName { DNS: host1.domain.tld, DNS: host2.domain.tld, email: admin@domain.tld, IPAddress: 1.2.3.4 }

  13. X.509 Certificate - Names ... subject : cn=myserver, o=myOrg, dc=myDomain, dc=org ... subjectAltName: { DNS: host1.domain.tld, DNS: host2.domain.tld, IPAddress: 1.2.3.4 } ...

  14. Key Usage Restrictions ● keyUsage (BIT STRING) – 0 digitalSignature – 1 nonRepudiation – 2 keyEncipherment – 3 dataEncipherment – 4 keyAgreement – 5 keyCertSign – 6 cRLSign – ...

  15. Key Usage Restrictions 2 ● extendedKeyUsage (OID) – 1.3.6.1.5.5.7.3.1 TLS server authentication – 1.3.6.1.5.5.7.3.2 TLS client authentication – 1.3.6.1.5.5.7.3.3 code signing – 1.3.6.1.5.5.7.3.4 email protection – ... – 1.3.6.1.5.5.7.3.0 Any usage

  16. Key Usage Restrictions 3 ● basicConstraints – CA (boolean) ● true in CA certs ● false in EE certs (or no basicConstrains at all) – path length (if CA == true) ● maximum of non-self-issued intermediate certificates in path

  17. X509. Certificate - Key Usage ... [ basicConstraints : {critical, CA: false},] ... keyUsage : {critical, 101 (digitalSignature, keyEncipherment)}, ... extendedKeyUsage : {non-critical, 1.3.6.1.5.5.7.3.1 (tLSServerAuth)} ...

  18. Operational Information ● version (v3) ● serial number ● Certificate Policies – OID, qualifiers ● CRL Distribution Points – access to CRL (URL) ● Authority Information Access – OCSP URL

  19. X.509 CRL & Revocation

  20. Certificate Revocation List ● version (v2) ● issuer ● this update – time of issuance ● next update – expected next issuance ● revoked certificates ● signature

  21. CRL Extensions ● CRL Extensions – Authority Key Identifier – CRL Number ● CRL Entry Extensions – Reason Code – Invalidity Date

  22. On-line Certificate Status Protocol ● request – certificate ID ● response – status ● good, revoked, unknown – signature

  23. X.509 CA as Identity Provider

  24. Role of CA/RA ● identity vetting [CA/RA] – ALL names ( Subject , subjectAltName ) ● Proof Of Possession (of the private key) [CA/RA] – access to the private key (sign/decrypt) – PK delivery ● revocation [CA/RA] ● publishing (CP, CPS, CRL, OCSP...) ● Certificate Policy & Certificate Practice Statement

  25. Common Myths

  26. Subject Content “Subject must contain C, ST, L, O, OU, CN, Email ” ● no rules for Subject names ● keep as short as possible ● use DC naming ● use subjectAltName for email

  27. Hostname in CN “CN must contain FQDN for host verification” ● obsolete, never standardized ● use subjectAltName for FQDN – RFC 3280, 2818, 2595

  28. One Valid Certificate per Subject “There may be at most one valid certificate for any given subject” ● OpenSSL implementation flaw ● overlapping validity intervals when re-keying ● different key usages

  29. nonRepudiation vs. authentication “One can use (commercial = high quality) qualified digital signature certificates for authentication” ● authentication = signing server provided challenge ● user has no control over the challenge

  30. PKI & IdM

  31. Naming ● X.500 global namespace is not managed – problems using Subject for identities ● alternative names ( subjectAltName ) – using existing managed namespaces ● DC naming ( Subject , Issuer )

  32. Private Key Management ● software tokens – quality of encryption – copyable ● hardware tokens – expensive ● site storages – only authentication keys (no non-repudiation) ● short-lived certificates

  33. X.509 Certificate as Identity Assertion ● all required content ● cryptographically strong ● compact, small ● ubiquitous tools to handle ● rich “historical experience”

  34. References RFC 3280 . Certificate and Certificate Revocation List (CRL) Profile RFC 2560 . Online Certificate Status Protocol – OCSP RFC 3647 . Certificate Policy and Certification Practices Framework RFC 2247 . Using Domains in LDAP/X.500

  35. References X.501 . Information Technology – Open Systems Interconnection - The Directory: Models, 1993. X.509 . Information Technology - Open Systems Interconnection – The Directory: Authentication Framework X.520 . Information Technology – Open Systems Interconnection - The Directory: Selected Attribute Types

Recommend

IoT: Taking PKI Where No PKI Has Gone Before Presented by: Scott Rea DigiCert Sr. PKI Architect

IoT: Taking PKI Where No PKI Has Gone Before Presented by: Scott Rea DigiCert Sr. PKI Architect

AllSeen Summit 2015: IoT: Taking PKI Where No PKI Has Gone Before Presented by: Scott Rea DigiCert Sr. PKI Architect ALLSEEN ALLIANCE Agenda Slide Title 3 Trust and PKI 9 Web Security - PKI example 26

451 views • 41 slides
SCION: PKI Overview Adrian Perrig Network Security Group, ETH Zrich PKI Concepts: Brief

SCION: PKI Overview Adrian Perrig Network Security Group, ETH Zrich PKI Concepts: Brief

SCION: PKI Overview Adrian Perrig Network Security Group, ETH Zrich PKI Concepts: Brief Introduction PKI: Public-Key Infrastructure Purpose of PKI: enable authentication of an entity Various types of entities Autonomous System

494 views • 32 slides
PKI: Glue of Middleware PKI: Glue of Middleware Michael R Gettes, Duke University Michael R

PKI: Glue of Middleware PKI: Glue of Middleware Michael R Gettes, Duke University Michael R

PKI: Glue of Middleware PKI: Glue of Middleware Michael R Gettes, Duke University Michael R Gettes, Duke University EuroCAMP EuroCAMP November, 2005 November, 2005 Landscaping Landscaping PKI Hierarchies and Bridges PKI Hierarchies

456 views • 26 slides
Understanding how PKI can secure your organization Todd Meedel Todd_F_Meedel@BCBSIL.com Sr.

Understanding how PKI can secure your organization Todd Meedel Todd_F_Meedel@BCBSIL.com Sr.

Understanding how PKI can secure your organization Todd Meedel Todd_F_Meedel@BCBSIL.com Sr. Cybersecurity Engineer IAM / PKI SME Health Care Services Corporation Objectives Who am I ? Defining what is PKI Explaining how PKI works

1.6k views • 41 slides
Einf Einf hrung in die Windows Server hrung in die Windows Server 2003 PKI 2003 PKI

Einf Einf hrung in die Windows Server hrung in die Windows Server 2003 PKI 2003 PKI

HP IT Symposium 2006 Einf Einf hrung in die Windows Server hrung in die Windows Server 2003 PKI 2003 PKI 16.Mai 2006 16.Mai 2006 1A05 1A05 Marc Grote Marc Grote Consultant Consultant Agenda Bestandteile einer PKI

349 views • 16 slides
Public Key Infrastructure PKI Michael Maass and Blase Ur 1 Outline Intro to cryptography

Public Key Infrastructure PKI Michael Maass and Blase Ur 1 Outline Intro to cryptography

Public Key Infrastructure PKI Michael Maass and Blase Ur 1 Outline Intro to cryptography Intro to PKI / Davis reading Current issues Gaw reading PKI in the enterprise Discussion 2 Introduction to Encryption We want

732 views • 47 slides
Slicing the licing the Onion: Onion: Anonymity Without PKI Anonymity Without PKI Sachin Katti

Slicing the licing the Onion: Onion: Anonymity Without PKI Anonymity Without PKI Sachin Katti

Slicing the licing the Onion: Onion: Anonymity Without PKI Anonymity Without PKI Sachin Katti Dina Katabi & Katya Puchala State of the art: Onio Onion Rout n Routing over P2P ing over P2P n Routing over P2P ing over P2P Bob Onion

705 views • 43 slides
PKI and Certificate Security Outline Motivation Certificates Public Key Infrastructure

PKI and Certificate Security Outline Motivation Certificates Public Key Infrastructure

IN3210 Network Security PKI and Certificate Security Outline Motivation Certificates Public Key Infrastructure Threats to certificates / PKI Protecting certificates / PKI 2 Certificates Motivation 3 Motivation: TLS

1.68k views • 108 slides
OSG PKI Transition: Status and Next Steps (and Lessons Learned) Von Welch OSG PKI

OSG PKI Transition: Status and Next Steps (and Lessons Learned) Von Welch OSG PKI

OSG PKI Transition: Status and Next Steps (and Lessons Learned) Von Welch OSG PKI Transition Lead Indiana University Center for Applied Cybersecurity Research Key Message DOE Grids CA stops issuing new certificates March 23 rd ,

397 views • 29 slides
The PKIX Standards and PKI Implementations Simos Xenitellis University of London

The PKIX Standards and PKI Implementations Simos Xenitellis University of London

The PKIX Standards and PKI implementations The PKIX Standards and PKI Implementations Simos Xenitellis University of London S.Xenitellis@rhbnc.ac.uk 1 16th May, 2000, University of London The PKIX Standards and PKI implementations Agenda

513 views • 29 slides
(NPKI) Interregional Standardization Forum for PKI & e-Trust 4-5 th April 2019 Introduction

(NPKI) Interregional Standardization Forum for PKI & e-Trust 4-5 th April 2019 Introduction

National Public Key Infrastructure (NPKI) Interregional Standardization Forum for PKI & e-Trust 4-5 th April 2019 Introduction The Public key infrastructure (PKI) is the set of hardware, software, policies, processes, and procedures

303 views • 7 slides
PKI: Public Key Infrastructure What is it, and why should I care? Conference on Higher Education

PKI: Public Key Infrastructure What is it, and why should I care? Conference on Higher Education

PKI: Public Key Infrastructure What is it, and why should I care? Conference on Higher Education Wes Hubert Computing in Kansas Information Services June 3, 2004 The University of Kansas Why? PKI adoption will continue growing to support

1.28k views • 46 slides
Securely Migrate Digital Identities from a Class PKI to a Blockchain Keywords : Certificate

Securely Migrate Digital Identities from a Class PKI to a Blockchain Keywords : Certificate

Securely Migrate Digital Identities from a Class PKI to a Blockchain Keywords : Certificate authority, Digital identity management, PKI, Blockchain Reading list: Bitcoin: A Peer-to-Peer Electronic Cash System https://bitcoin.org/bitcoin.pdf

464 views • 10 slides
A PKI for IP Address Space and AS Numbers Dr. Stephen Kent Chief Scientist - Information

A PKI for IP Address Space and AS Numbers Dr. Stephen Kent Chief Scientist - Information

A PKI for IP Address Space and AS Numbers Dr. Stephen Kent Chief Scientist - Information Security Why A PKI? All proposals for improving the security of BGP rely on a secure infrastructure that attests to address space and AS number

254 views • 13 slides
Mutually Endorsing CA Infrastructure Don't treat Symptoms: Improve the PKI System Combine

Mutually Endorsing CA Infrastructure Don't treat Symptoms: Improve the PKI System Combine

Mutually Endorsing CA Infrastructure Don't treat Symptoms: Improve the PKI System Combine PKI with Web-Of-Trust / Notary ideas Each CA should run a dynamic Vouching Service Vouching for network visibility of: DNS information:

481 views • 6 slides
Secure SDN Authentication (DNS based PKI model) Author: www.huawei.com Hosnieh Rafiee

Secure SDN Authentication (DNS based PKI model) Author: www.huawei.com Hosnieh Rafiee

IETF93 22 July 2015 Prague SDNRG WG Secure SDN Authentication (DNS based PKI model) Author: www.huawei.com Hosnieh Rafiee Ietf{at}rozanak.com Summary Problem: No flexibly for PKI model Solution: Combination of DANE, DNSSEC and

342 views • 13 slides
Public-Key Infrastructure NETS E2008 Many slides from Vitaly Shmatikov, UT Austin slide 1

Public-Key Infrastructure NETS E2008 Many slides from Vitaly Shmatikov, UT Austin slide 1

Public-Key Infrastructure NETS E2008 Many slides from Vitaly Shmatikov, UT Austin slide 1 Authenticity of Public Keys ? private key Bob Alice public key Problem: How does Alice know that the public key she received is really Bobs

465 views • 20 slides
RevCast : Fast, Private Certificate Revocation over FM radio Aaron Schulman Stanford University

RevCast : Fast, Private Certificate Revocation over FM radio Aaron Schulman Stanford University

RevCast : Fast, Private Certificate Revocation over FM radio Aaron Schulman Stanford University Dave Levin Neil Spring University of Maryland University of Maryland Authentication in the PKI Authentication in the PKI I want an

835 views • 81 slides
Cryptography [Finish Asymmetric Cryptography] Spring 2020 Earlence Fernandes

Cryptography [Finish Asymmetric Cryptography] Spring 2020 Earlence Fernandes

CS 642: Computer Security and Privacy Cryptography [Finish Asymmetric Cryptography] Spring 2020 Earlence Fernandes earlence@cs.wisc.edu Thanks to Dan Boneh, Dieter Gollmann, Dan Halperin, Yoshi Kohno, Ada Lerner, John Manferdelli, John

671 views • 20 slides
Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular

Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular

KTH ROYAL INSTITUTE OF TECHNOLOGY Scalable & Resilient Vehicle-Centric Certificate Revocation List Distri- bution in Vehicular Communication Systems Mohammad Khodaei and Panos Papadimitratos Networked Systems Security Group (NSS)

983 views • 52 slides
Design of a Public-Key Trust System for FreeBSD Eric L. McCorkle January 18, 2018 Motivating

Design of a Public-Key Trust System for FreeBSD Eric L. McCorkle January 18, 2018 Motivating

Design of a Public-Key Trust System for FreeBSD Eric L. McCorkle January 18, 2018 Motivating Example Consider a proposal for signing the kernel and modules: Extend Executable Linkable Format (ELF) to carry public-key signatures Sign

535 views • 29 slides
Public Key Infrastructures Foundations for secure e-commerce (bmevihim219) Dr. Levente Buttyn

Public Key Infrastructures Foundations for secure e-commerce (bmevihim219) Dr. Levente Buttyn

Public Key Infrastructures Foundations for secure e-commerce (bmevihim219) Dr. Levente Buttyn associate professor BME Hlzati Rendszerek s Szolgltatsok Tanszk Lab of Cryptography and System Security (CrySyS) buttyan@hit.bme.hu,

539 views • 25 slides
Key Management and Distribution Symmetric with Asymmetric Public Keys CSS441: Security and

Key Management and Distribution Symmetric with Asymmetric Public Keys CSS441: Security and

CSS441 Key Management Key Distribution Symmetric with Symmetric Key Management and Distribution Symmetric with Asymmetric Public Keys CSS441: Security and Cryptography X.509 Sirindhorn International Institute of Technology Thammasat

545 views • 33 slides
Octavia OpenStack Load Balancing New Features Deep Dive OpenStack Summit - Denver Adam Harwell -

Octavia OpenStack Load Balancing New Features Deep Dive OpenStack Summit - Denver Adam Harwell -

May 2019 Octavia OpenStack Load Balancing New Features Deep Dive OpenStack Summit - Denver Adam Harwell - Train PTL - Verizon Media Carlos Goncalves - Red Hat Michael Johnson - Red Hat What is Octavia? Network Load Balancing as a Service for

1.25k views • 16 slides

More recommend

Logo Sambuz

Unleash a World of Digital Possibilities—Browse, Share, and Explore Content Without Boundaries

Useful Links

About Us Privacy Services FAQ's Contact

Newsletter

Stay Informed & Inspired—Subscribe for the Latest Updates, Tips, and Exclusive Content Directly to Your Inbox.

Mail Us

mail@sambuz.com

2025 SAMBUZ, All right reserved.