wallet
play

Wallet Secure Data Distribution and Management 2008 Update Russ - PowerPoint PPT Presentation

Jan 10, 2024 •118 likes •236 views

Stanford University May 13, 2008 1 Wallet Secure Data Distribution and Management 2008 Update Russ Allbery May 13, 2008 Russ Allbery (rra@stanford.edu) Stanford University May 13, 2008 2 Contents What is the Wallet? The Goal

  1. Stanford University May 13, 2008 1 Wallet Secure Data Distribution and Management 2008 Update Russ Allbery May 13, 2008 Russ Allbery (rra@stanford.edu)

  2. Stanford University May 13, 2008 2 Contents • What is the Wallet? • The Goal • The Architecture • Example Wallet Object • Wallet Object Types • Wallet ACL Verifiers • Next Steps: 1.0... • Next Steps: ...and Beyond Russ Allbery (rra@stanford.edu)

  3. Stanford University May 13, 2008 3 What is the Wallet? • Manages any type of secure data – Keytabs and simple files implemented – WebAuth keyrings and X.509 CA planned – Extensible system for adding new types • Rich ACL mechanism – Fine-grained access control for operations – Simple identity and NetDB implemented – Extensible system for adding more verifiers – PTS, LDAP , and nested groups planned • Built on remctl, but server and client can be replaced with any other authenticated RPC layer (SOAP , REST, etc.) without major server changes Russ Allbery (rra@stanford.edu)

  4. Stanford University May 13, 2008 4 The Goal • All secure data goes into the wallet • All non-secure system information goes into Puppet • Fully automated server deployment except for initial keying (and maybe initial keying as well) • Chained permissions: key the server and the server key can download other required secure data • Central management of secure data • Allows automated rekeying where appropriate • Unchanging support for generated objects Russ Allbery (rra@stanford.edu)

  5. Stanford University May 13, 2008 5 The Architecture • Authorization and privacy via remctl protocol • C client with simple command passthrough, handling of file creation and some special keytab logic • Server wrapper that interprets remctld authentication • Wallet::Server handles ACL checking and high-level API • Separate ACLs for show/get/store/destroy and owner • Wallet::Object::* implements each wallet type • Wallet::ACL::* (will be renamed) implements ACL types • Basic support for local policy and object autocreation Russ Allbery (rra@stanford.edu)

  6. Stanford University May 13, 2008 6 Example Wallet Object Type: keytab Name: host/windlord.stanford.edu Owner: host/windlord.stanford.edu Enctypes: aes256-cts Created by: rra/root@stanford.edu Created from: windlord.Stanford.EDU Created on: 2007-12-06 16:55:13 Downloaded by: rra/root@stanford.edu Downloaded from: windlord.Stanford.EDU Downloaded on: 2008-02-08 13:38:56 Members of ACL host/windlord.stanford.edu (id: 2) are: krb5 host/windlord.stanford.edu@stanford.edu netdb-root windlord.stanford.edu Russ Allbery (rra@stanford.edu)

  7. Stanford University May 13, 2008 7 Wallet Object Types • Support create, destroy, get, store • Can hook into flag settings • Can support arbitrary per-type attributes (example: enctypes) • Currently implemented: – Simple file objects (opaque data chunks) – Kerberos keytabs Russ Allbery (rra@stanford.edu)

  8. Stanford University May 13, 2008 8 Wallet ACL Verifiers • Initialize method to create persistant resources • Check method to check an identity against an ACL value • Currently implemented: – krb5 (simple identity comparison) – NetDB roles (Stanford’s GPL ’d host management software) • Nested groups will require some special handling to prevent recursion Russ Allbery (rra@stanford.edu)

  9. Stanford University May 13, 2008 9 Next Steps: 1.0... • Better history support for deleted objects • Better reporting and search • Heimdal support for the client (and maybe server) • Upgrade support for the database • LDAP and PTS ACL verifiers • WebAuth keyring object type • Tests, tests, tests Russ Allbery (rra@stanford.edu)

  10. Stanford University May 13, 2008 10 Next Steps: ...and Beyond • X.509 and ssh keypair object type support • Rekeying • remctl server fixes to allow data containing nuls • Better object templating for autocreation • Even more documentation: conventions, naming, replacing the protocol • More native Perl support for kadmin and Kerberos • CGI and REST proof of concept Russ Allbery (rra@stanford.edu)

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

The best Ethereum wallet Intro My main goal with the Pillar wallet design was to ensure maximal

The best Ethereum wallet Intro My main goal with the Pillar wallet design was to ensure maximal

The best Ethereum wallet Intro My main goal with the Pillar wallet design was to ensure maximal possible security for the users, without unnecessary limitations. Furthermore, I have focused on the reduction of redundant steps, legibility and

543 views • 16 slides
The Green Assets Wallet Validating Green Investment through Blockchain 1 Green Assets Wallet

The Green Assets Wallet Validating Green Investment through Blockchain 1 Green Assets Wallet

The Green Assets Wallet Validating Green Investment through Blockchain 1 Green Assets Wallet (GAW) idea 2 GAW - background Delivering on the Paris Agreement and SDGs by Accelerating Green Finance and Investment through Blockchain

325 views • 8 slides
On the Ring-LWE and Polynomial-LWE problems Miruna Roca, Damien Stehl, Alexandre Wallet 1/35

On the Ring-LWE and Polynomial-LWE problems Miruna Roca, Damien Stehl, Alexandre Wallet 1/35

On the Ring-LWE and Polynomial-LWE problems Miruna Roca, Damien Stehl, Alexandre Wallet 1/35 A. Wallet About todays talk Its post-quantum (public-key) crypto time! Cryptography = building secure schemes Theoretical security = reduction

659 views • 49 slides
TREZOR Wallet Setup and BTC Transfer What is QR.CR? T he Worlds Best QR Code Mobile Marketing

TREZOR Wallet Setup and BTC Transfer What is QR.CR? T he Worlds Best QR Code Mobile Marketing

The Dynamic QR Code System TREZOR Wallet Setup and BTC Transfer What is QR.CR? T he Worlds Best QR Code Mobile Marketing System Secure Easy to use Accessible Interactive Versatile Why TREZOR Wallet? Keep Bitcoins Safe

423 views • 25 slides
On the Ring-LWE and Polynomial-LWE problems Miruna Roca, Damien Stehl, Alexandre Wallet

On the Ring-LWE and Polynomial-LWE problems Miruna Roca, Damien Stehl, Alexandre Wallet

On the Ring-LWE and Polynomial-LWE problems Miruna Roca, Damien Stehl, Alexandre Wallet Alexandre Wallet 1 / 37 ApproxSVP ApproxSVP ( O K -modules) ( O K -ideals) [LS15] [PRS17] [AD17] decision decision RLWE search RLWE

959 views • 54 slides
HWallet The simplest Bitcoin hardware wallet Nemanja Nikodijevi <nemanja@hacke.rs>

HWallet The simplest Bitcoin hardware wallet Nemanja Nikodijevi <nemanja@hacke.rs>

HWallet The simplest Bitcoin hardware wallet Nemanja Nikodijevi <nemanja@hacke.rs> FOSDEM '19 Vulnerabilities in hardware wallets https://blog.trezor.io/details- https://wallet.fail/wallets/nanos https://blog.trezor.io/fixing-

473 views • 12 slides
The spectral distance on the Moyal plane ( with: E. Cagnache, P . Martinetti, J.-C. Wallet

The spectral distance on the Moyal plane ( with: E. Cagnache, P . Martinetti, J.-C. Wallet

The spectral distance on the Moyal plane ( with: E. Cagnache, P . Martinetti, J.-C. Wallet arXiv:0912.0906 ) Francesco DAndrea International School for Advanced Studies (SISSA) Via Beirut 2-4, Trieste, Italy 24/02/2010 Laboratoire de

539 views • 18 slides
Wallet Security Wallets Keep track of the world If you want Synchronize with the

Wallet Security Wallets Keep track of the world If you want Synchronize with the

Wallet Security Wallets Keep track of the world If you want Synchronize with the network if you fall behind Address end user needs Send coin Receive coin Answer queries What is my balance? What is my activity

772 views • 37 slides
Whats in your wallet?! Lara Pudwell Valparaiso University January 27, 2017 Whats in your

Whats in your wallet?! Lara Pudwell Valparaiso University January 27, 2017 Whats in your

The Coin Keeper The Simple Spender The Gamblers The Small Spender The Whole Shebang ...and More Fun Whats in your wallet?! Lara Pudwell Valparaiso University January 27, 2017 Whats in your wallet?! Lara Pudwell The Coin Keeper The

1.19k views • 91 slides
UNRAVELLING THE BoP WALLET 1 2 Over 60% of the Kenyan BoP consumers own a mobile phone, but

UNRAVELLING THE BoP WALLET 1 2 Over 60% of the Kenyan BoP consumers own a mobile phone, but

UNRAVELLING THE BoP WALLET 1 2 Over 60% of the Kenyan BoP consumers own a mobile phone, but very few use applications other than M-PESA https://www.infodev.org/infodev-files/final_kenya_bop_study_web_jan_02_2013_0.pdf Challenge at Hand

639 views • 25 slides
Metric Aspects of the Moyal Algebra ( with: E. Cagnache, P . Martinetti, J.-C. Wallet J.

Metric Aspects of the Moyal Algebra ( with: E. Cagnache, P . Martinetti, J.-C. Wallet J.

Metric Aspects of the Moyal Algebra ( with: E. Cagnache, P . Martinetti, J.-C. Wallet J. Geom. Phys. 2011 ) Francesco DAndrea Department of Mathematics and Applications, University of Naples Federico II P .le Tecchio 80, Naples, Italy

543 views • 22 slides
Mod-NTRU trapdoors and applications Alexandre Wallet Lattices: From Theory to Practice Simons

Mod-NTRU trapdoors and applications Alexandre Wallet Lattices: From Theory to Practice Simons

Mod-NTRU trapdoors and applications Alexandre Wallet Lattices: From Theory to Practice Simons Institute, 29/04/2020 Based on a joint work with Chitchanok Chuengsatiansup, Thomas Prest, Damien Stehl and Keita Xagawa, ePrint 2019/1456 1/17 A.

540 views • 28 slides
WALLET PSYCHOLOGY CONSUMER BEHAVIOUR AND CLIENT FOCUSED TARGETING IF YOU ARE GOING TO ADVERTISE AT

WALLET PSYCHOLOGY CONSUMER BEHAVIOUR AND CLIENT FOCUSED TARGETING IF YOU ARE GOING TO ADVERTISE AT

WALLET PSYCHOLOGY CONSUMER BEHAVIOUR AND CLIENT FOCUSED TARGETING IF YOU ARE GOING TO ADVERTISE AT ALL, MAKE SURE THAT IT IS NOT MONEY DOWN THE DRAIN, CHOOSE WISELY HOW YOU SPEND YOUR MONEY! TRADITIONAL ADVERTISING TV Print Big budget bang

423 views • 27 slides
Dimensionality Reduction for Seismic Attribute Analysis Bradley C. Wallet, Ph.D. University of

Dimensionality Reduction for Seismic Attribute Analysis Bradley C. Wallet, Ph.D. University of

Dimensionality Reduction for Seismic Attribute Analysis Bradley C. Wallet, Ph.D. University of Oklahoma ConocoPhillips School of Geology and Geophysics Where oil is first found is in the minds of men - Wallace Pratt Motivation Motivation

968 views • 61 slides
Do you know what's in your wallet? The Secret Service was founded. What is one of the main

Do you know what's in your wallet? The Secret Service was founded. What is one of the main

Do you know what's in your wallet? The Secret Service was founded. What is one of the main jobs of the Secret Service? Keeping our nations currency safe In 1865, what percentage of the nations currency was counterfeit? Estimated 1/3

810 views • 24 slides
www.infosecawareness.in Agenda Financial Safety and Security - Awareness E-wallet- Usage,

www.infosecawareness.in Agenda Financial Safety and Security - Awareness E-wallet- Usage,

INFORMATION SECURITY AWARENESS keeping yourself and your family safe in a tech driven world www.isea.gov.in www.infosecawareness.in Agenda Financial Safety and Security - Awareness E-wallet- Usage, security and Guidelines Insta loan

604 views • 29 slides
Childhood Accidents Accidents are the most common cause of death among children aged 1 to 14

Childhood Accidents Accidents are the most common cause of death among children aged 1 to 14

Dr. K.M. Abul Hasan, M.S., M.Ch., Childhood Accidents Accidents are the most common cause of death among children aged 1 to 14 years. Accidents cause a third of deaths of children aged between 10 and 14 years. Accidents result in

878 views • 53 slides
osmocom.org - FOSS for mobile comms community based Free / Open Source Software for

osmocom.org - FOSS for mobile comms community based Free / Open Source Software for

Researching communications systems Bootstrapping Osmocom The Osmocom project osmocom.org - FOSS for mobile comms community based Free / Open Source Software for communications Harald Welte <laforge@gnumonks.org> gnumonks.org

959 views • 36 slides
Colloque IPv6 Colloque IPv6 Colloque IPv6 Colloque IPv6 Caen, 13 Juin 2013 Strat Strat Strat

Colloque IPv6 Colloque IPv6 Colloque IPv6 Colloque IPv6 Caen, 13 Juin 2013 Strat Strat Strat

Colloque IPv6 Colloque IPv6 Colloque IPv6 Colloque IPv6 Caen, 13 Juin 2013 Strat Strat Strat Strat gie de d gie de d gie de d gie de d ploiement ploiement ploiement ploiement d d d d IPv6

396 views • 15 slides
IPv4 address exhaustion and IPv6 Glen Turner 2008-12-09 AARNet staff meeting aar net

IPv4 address exhaustion and IPv6 Glen Turner 2008-12-09 AARNet staff meeting aar net

IPv4 address exhaustion and IPv6 Glen Turner 2008-12-09 AARNet staff meeting aar net Australia's Academic and Research Network IPv6 policy Going forward, we seek to support IPv6 to the same extent as we support IPv4. Exceptions require

631 views • 52 slides
Wallet Secure Data Distribution and Management Russ Allbery June 6, 2006 Russ Allbery

Wallet Secure Data Distribution and Management Russ Allbery June 6, 2006 Russ Allbery

Stanford University June 6, 2006 1 Wallet Secure Data Distribution and Management Russ Allbery June 6, 2006 Russ Allbery (rra@stanford.edu) Stanford University June 6, 2006 2 Contents The Starting Point Overview and Goal

160 views • 11 slides
x = 15 coord = 3*(x-2.7) x , = , 15 , , coord , = , 3, *, (, x , - , 2.7, ) ...

x = 15 coord = 3*(x-2.7) x , = , 15 , , coord , = , 3, *, (, x , - , 2.7, ) ...

x = 15 coord = 3*(x-2.7) x , = , 15 , , coord , = , 3, *, (, x , - , 2.7, ) ... = = * x 15 coord 3 = x 15 x 2.7 LOAD_CONST 0 # load the literal (constant) at loc. 0 x = 5 y = 7 z = x + y LOAD_CONST LOAD_NAME

595 views • 46 slides
SWEN 262 Engineering of Software Subsystems Design Principles Object Oriented Principles

SWEN 262 Engineering of Software Subsystems Design Principles Object Oriented Principles

SWEN 262 Engineering of Software Subsystems Design Principles Object Oriented Principles (Review) Classes A class is a blueprint that defines the state (data) and behavior (methods) that belong to some class of thing. It is like a

363 views • 10 slides
A full node for every Alice By Nicolas Dorier Main maintainer of NBitcoin and BTCPay .NET

A full node for every Alice By Nicolas Dorier Main maintainer of NBitcoin and BTCPay .NET

A full node for every Alice By Nicolas Dorier Main maintainer of NBitcoin and BTCPay .NET fanboy Foreword No ICO Not a company No funding Need Open Source developers, not money BTCPay is started as a reaction to

469 views • 36 slides

More recommend