Presentation is loading. Please wait.

Presentation is loading. Please wait.

Haidong Xue.  Part One: Review of the Knowledge in Textbook goals, issues, solutions  Part Two: Current Application X509.V3  Part Three: Future Work.

Similar presentations


Presentation on theme: "Haidong Xue.  Part One: Review of the Knowledge in Textbook goals, issues, solutions  Part Two: Current Application X509.V3  Part Three: Future Work."— Presentation transcript:

1 Haidong Xue

2  Part One: Review of the Knowledge in Textbook goals, issues, solutions  Part Two: Current Application X509.V3  Part Three: Future Work

3 goals Issues solutions

4 Goals:  Secrecy  Integrity  Availability  Reliability  Safety

5 Issues:  Access authorization discretionary access control mandatory access control  Message Security cryptography  Mutual Authentication cryptography

6 Cryptography: private key system public key system protocol: Kerberos, X.509

7 DES RSA MD5

8 X.509 V3

9  Certificate ◦ Version ◦ Serial Number ◦ Signature Algorithm ◦ Issuer ◦ Validity Subject ◦ Subject Public Key Info  Public Key Algorithm  Subject Public Key ◦ Issuer Unique Identifier (Optional) ◦ Subject Unique Identifier (Optional) ◦ Extensions (Optional)  Certificate Signature Algorithm  Certificate Signature (http://en.wikipedia.org/wiki/X.509)

10 Customer Kc-private Kb-public Bank Kb-private Kc-public 1. A = RSA(Information, Kb-public) 2. B = RSA(A, Kc-private) 3. Send A,B

11 Customer Kc-private Kb-public Bank Kb-private Kc-public 1.Signature: (1). A = MD5(information) (2). B = RSA(A, Kc-private) 2. Encrypt: (1). Generate 128bits DES Key (2). C = DES(information, K-des) (3). D = RSA(K-des, Kb-public) 3. Send B, C, D

12 Customer Kc-private Kb-public Kca-public Bank Kb-private Kc-public Certificate Authority: Kca-private Kb-public RSA( MD5(Kb-public), Kca-private)

13 A new kind of private key

14  Randy Chow, Theodore Johnson. Distributed Operating Systems& Algorithms. Addison Wesley, 1997  X.509. http://en.wikipedia.org/wiki/X.509http://en.wikipedia.org/wiki/X.509  Public key certificate. http://en.wikipedia.org/wiki/Digital_Certificate http://en.wikipedia.org/wiki/Digital_Certificate  Introduction to the digital certificates. http://hi.baidu.com/chenxu321/blog/item/783d100834aa50 d862d986ca.html http://hi.baidu.com/chenxu321/blog/item/783d100834aa50 d862d986ca.html  Principles of digital certificates. http://blog.csdn.net/liukeforever/archive/2009/07/31/4396 521.aspx


Download ppt "Haidong Xue.  Part One: Review of the Knowledge in Textbook goals, issues, solutions  Part Two: Current Application X509.V3  Part Three: Future Work."

Similar presentations


Ads by Google