Presentation is loading. Please wait.

Presentation is loading. Please wait.

Scalability and Control realized with a Centralized Key Management Approach NIST Key Management Workshop June 9, 2009; AM session Gaithersburg, MD John.

Similar presentations


Presentation on theme: "Scalability and Control realized with a Centralized Key Management Approach NIST Key Management Workshop June 9, 2009; AM session Gaithersburg, MD John."— Presentation transcript:

1 Scalability and Control realized with a Centralized Key Management Approach NIST Key Management Workshop June 9, 2009; AM session Gaithersburg, MD John Marchioni ARX, Inc. San Francisco, CA Email: johnmarc@arx.com http://www.arx.com

2 ARX, Inc. Core focus: cost-efficient, scalable, and secure PKI applications for industry. First to market with a network-attached, multi-user HSM (PrivateServer®) ; First to market with a centralized key-management solution for end-user digital signatures (CoSign®); ARX implements solutions for both public and private sectors; ARX solutions are gaining in adoption precisely because of their scalability, security, ease of deployment and ease of use.

3 Agenda Obstacles with Key Distribution Distributing & Managing Key Media Revocation breaks down when key is out of reach Auditing Key Actions and Key Usage Overall, control and scalability are crude Alternative: Centralized Key Management Lower Administrative Burden Lower Processing Overhead Flattened Learning Curve for End Users Result is refined control with scalability Q&A

4 Observations “Traditional PKI systems are based on distributing keys to the end users, which, aside from security concerns [Marchesini], creates a high burden in logistics, cost, help desk support and user acceptance [Whitten] and also introduces training obstacles [Nielsen].” [Ref] S. Turner and R. Housley, “Implementing Email Security and Tokens: Current Standards, Tools, and Practices” pp.159, Wiley Publishing, 2008.

5 Key Management Background Key management supports these 3 basic applications: Digital Signatures Access Control Confidentiality Key distribution may work well enough for things like session confidentiality, and devices that require access control, but the model does not scale well and tends to break down when end- users also require key services.

6 The Control Issue, e.g., A Runaway Stage

7 Similar Issue with Key Distribution Systems Admin, or Security Officer I have work to do but left my key at home. I can’t remember where I left mine.

8 Key Distribution Issues Nature of Key DistributionIssue Key Media Opt 1–Softtoken: afile on the PC/Server Opt2–HW token: USB stick or smartcard  The key useris tethered to that PC;  Hard drive failure = lost keys;  Users that need more than one certificate need to maintain more than one key token {multi-token issue may also apply to Opt 2}.  Several scalability & logistical headaches: -provision and distribute tokens; -replace lost tokens; -must also replace all tokens when system needs to be re-keyed; -token driver and interface compatibility issues with the PC’s OS;  Added cost burden—must purchase the tokens. -user-to-admin coordination issues when keys need to be refreshed;

9 Key Distribution Issues (cont’d)  Certificate revocation alone does not turn the user off— a distinct disadvantage for maintaining proper controls;  Extra operational overhead, must physically retrieve the key (i.e., the HW token or PC) for key revocation.  Delayed production, with administrative overhead;  End-user learning curve (for the non-PKI literate, and most users are not PKI literate): - user is not familiar with key generation process; - user-to-RA/CA interaction is confusing. Nature of Key DistributionIssue Revocation The key cannotbe easily revoked, rather only the certificate Administrative and computationaloverhead, and compoundingcostburden:  mustmaintain CRL;  must reconcile CRLs;  slow processing of large CRLs that grow over time;  must subscribe to (pay for) an OCSP service. Control (key - user’sstate = off/on) The key usercancontinue to use the key evenafter certificate is revoked The keyuser cannot start work untilthe key token is delivered and its driver is successfully installed

10 Key Distribution Issues (cont’d) Nature of Key DistributionIssue Audit Key usage and key actions are performed by the token at the local PC  Difficult to audit key usage and key actions when: - they are performed at the end-user’s PC, and/or, - when the computer is not on the network.

11 Centralized Key Management Key Media HW token: secure, centralized appliance, I.e., FIPS 140-2 level 3 evaluated, network- attached, multi-user HSM Nature of Advantages  User’s that require more than one certificateneed not self-maintain multiple tokens;  One (difficult-to-lose) securehardware key media (for all key users);  Key users can roam from PC to PC as long as they have network access;  Entire community can be re-keyed (and keys can also be refreshed) from the central appliance in one step, and without end - user interaction. Revocation Bothkeyand certificatecan be revoked, usually in one step; key revocation is simplified for the administrator  Key revocation is the most critical of controls from an operational perspective, {proper control may not otherwise be possible};  If a centralized approach is used, no need for OCSP; -CRLwould also be less important, but a CRL can be useful to help maintain a historical record, although CRLs would not be needed for verification of key actions; {the above overhead is required only for parties that still rely on systems that distribute keys}. Centralized Key Management

12 Centralized Key Management (cont’d) Nature of Centralized Key Management Advantages Control (key-user’sstate = off/on) The key user can be instantly turned off/on by the central appliance, a distinct control advantage  No need to waitfor distribution of key media = no delayed production;  Relatively very little administrative overhead;  No user learning curve for key-generation, and, with directory-driven HSM appliance acting as RA Proxy, no user-to-RA/CA interaction isrequired;  Keyis revoked = user is instantly and reliably turned off. Audit Key usage and keyactions are performed by the centralized HSM  Key usage and key actions canalways be recorded by the centralized HSM; -in addition, this audit log can reliably inform the administrator who is using the key-driven application and who is not; -this audit log can then also be relied on for charge- back (cost allocation) by user/department.

13 Summary Centralized key management offers obvious control and audit advantages over key distribution. Centralized key management alleviates many administrative and cost burdens. Scalability requires the end-user “low touch”, proper controls, and minimization of cost and administrative overhead as offered by the centralized approach. Organizations of all sizes (very largest to the small) can benefit from the control and scalability, offered by centralized key management strategies, and will find such strategies are both more affordable and durable.

14 References C. Ellison, “Improvements on Conventional PKI Wisdom”, Proceedings of the 1st Annual PKI Research Workshop, pp. 165-176, August 2002. [FIPS140] National Institute of Standards and Technology (NIST), “FIPS Publication 140-2: Security Requirements for Cryptographic Modules”, May 2001. S. Gupta, “Security Characteristics of Cryptographic Mobility Solutions”, Proceedings of the 1st Annual PKI Research Workshop, pp. 117-126, August 2002. M. Lorch, J. Basney and D. Kafura, “A Hardware-secured Credential Repository for Grid PKIs”, 4th IEEE/ACM International Symposium on Cluster Computing and the Grid, pp. 640-647, April 2004. J. Marchesini, S.W. Smith, M. Zhao, “Keyjacking: Risks of the Current Client-side Infrastructure”, Proceedings of the 2nd Annual PKI Research Workshop, pp. 128-144, April 2003. [NAMU and Directory-Driven HSM Appliance] S. Turner and R. Housley, “Implementing Email Security and Tokens: Current Standards, Tools, and Practices” pp.159-160, Wiley Publishing, 2008. R. Nielsen, “Observations from the Deployment of a Large Scale PKI”, Proceedings of the 4th Annual PKI Research Workshop, pp. 159-165, August 2005. A. Whitten and J.D. Tygar, “Why Johnny Can’t Encrypt: A Usability Evaluation of PGP 5.0”, Proceedings of the 8th USENIX Security Symposium, pp. 169-184, August 1999.

15 What do you think? http://www.arx.com For those viewing via webcast, please submit questions for this presentation to kmwquestions@nist.govkmwquestions@nist.gov


Download ppt "Scalability and Control realized with a Centralized Key Management Approach NIST Key Management Workshop June 9, 2009; AM session Gaithersburg, MD John."

Similar presentations


Ads by Google