Presentation is loading. Please wait.

Presentation is loading. Please wait.

Inside the PKI Framework: * Activating the Puzzle Pieces PKI Summit Snowmass August 10 2001.

Published byCuthbert Quentin Green Modified over 8 years ago

Similar presentations

Presentation on theme: "Inside the PKI Framework: * Activating the Puzzle Pieces PKI Summit Snowmass August 10 2001."— Presentation transcript:

1 Inside the PKI Framework: * Activating the Puzzle Pieces PKI Summit Snowmass August 10 2001

2 8/10/01www.cren.net2 Themes —(1)Parallelism and (2) Build on What We Have… 1. Technical developments (TAG) 2. Policy Developments (PAG) 3. Web Lite & Ultra-Lite PKI Services

3 PKI is a complex set of technologies — Thus lots of pieces... Theme #3: Time to Get Started...

4 8/10/01www.cren.net4 Sample Uses of Digital Certificates with Web Applications from Campuses  Inter-library Loan Requests  Student Registration  Transcripts  Faculty to see grade reports, etc  Students to see their grade reports  Housing Lottery  HR Self Service  E-commerce  Access to Class or Departmental Materials  Access to journals from non-campus machines  Portal Authentication  Network Requests From HEPKI-TAG /J. Jokl Chart

5 8/10/01www.cren.net5 What Can CREN Bring to this Space?  Educational Services  CA Higher education services, tailored to and responsive to higher education

6 8/10/01www.cren.net6 Adding Value with CREN CA Services  Intra-campus Services - Web Server Certificates l Support secure web server applications and services Solves need for secure authorization for campus services  Inter-Institutional Services - Institutional Certs l Support secure and convenient access to learning and research materials anywhere and anytime Solves messy problems associated with proxy servers Certifies Campus Certificates for many purposes  Both Campus and Inter-Institutional Services - Institutional Certs l Support secure and signed email Solves problems of sending documents and communications securely and with integrity

7 8/10/01www.cren.net7 Web Server Certs Service Web Server Certs Service Campus Services - Authorization - Signed, Secure Email Campus Services - Authorization - Signed, Secure Email PKI Landscape…The Campus Infrastructure for Digital Certs Campus Infrastructure - Know Your People - Issue Digital Certificates - Setup Secure Servers Campus Infrastructure - Know Your People - Issue Digital Certificates - Setup Secure Servers CREN CA Institutional Certificate Service

8 8/10/01www.cren.net8 Core PKI Pieces - Campus Packaging

9 8/10/01www.cren.net9 Supporting CA Services Overview  Policy work l Supporting the HE_CP Work l Update CREN CPS (January 27, 2000)  Educational Services - Seminars, etc  Getting Started Projects  Certificate Repository

10 8/10/01www.cren.net10 CA Educational Services - 2001  Seminars l Directories and Certificate Authority Services January and June 2001 Supported by NSF Almost 100 institutions represented... Survey on state of implementation at campuses...  Frequently Asked Questions (FAQ) Series PKI Infrastructure (1999) Institutional Directories (April, 2000)

11 8/10/01www.cren.net11 CA Educational Services - What’s Next?  Seminars l Directories and Certificate Authority Services More being planned… Clear requests/feedback on what to do next...  Web site updating  CA Bulletins - Examples l Loading Root Certificates l Accessing JSTOR with Digital Certificates  TechTalks...

12 8/10/01www.cren.net12 CREN CA Web Server Certificates  Available now  Self-signed root issued on July 12, 2001, valid until July 10, 2009  Issued to institutions via existing institutional technical contacts l One contact/conduit per institution l Quick turnaround after CSR is received  Users will load CREN root into browser - See “Root Bulletin” and web site

13 8/10/01www.cren.net13 Getting Started with Dig Certs - The JSTOR Project  Goal: l Use digital certificates to access JSTOR l Draft Bulletin…  Project supported by Mellon  A PKI-Lite Project using rudimentary level of assurance (LOA)  Project just redesigned over last two weeks  Org Committee recommended to focus on librarians and 2-3 content providers

14 8/10/01www.cren.net14 Getting Started with Dig Certs - The JSTOR Project  Meeting at Internet2/Austin  Institutions with IT people and librarians who work well together  Invite 14-15 institutions  Proposed scope of project... l Issue 50 -250 certificates to needy faculty, students l Develop materials to enthuse and disseminate information and opportunity l Report on projects at Spring CNI

15 8/10/01www.cren.net15 Getting Started with Dig Certs - The JSTOR Project  JSTOR is ready — is digital certificate- enabled with a log-in url ready  Applies three tests to certificates l Is the issuer of certificate, such as U of Minn in their current licensee database? l Is the certificate a valid certificate, in that it has not expired? l Is the certificate a valid certificate — does it contain a valid chain to a recognized root, i.e. CREN?

16 8/10/01www.cren.net16 Web Server Certs Service Web Server Certs Service Campus Uses - Authorization - Signed, Secure Email Campus Uses - Authorization - Signed, Secure Email The Campus Infrastructure and Link to Content Providers Campus Infrastructure - Know Your People - Issue Digital Certificates - Setup Secure Servers Campus Infrastructure - Know Your People - Issue Digital Certificates - Setup Secure Servers Content Providers - Non-Profit - For-Profit - University Databases CREN CA Institutional Certificate Service

17 8/10/01www.cren.net17 Making progress… “Because it is Time”

Download ppt "Inside the PKI Framework: * Activating the Puzzle Pieces PKI Summit Snowmass August 10 2001."

Similar presentations

May 06, 2002 Getting Started with Digital Certificates: Is PKI-Lite Real PKI? Internet2 Spring Meeting 2002 Wash, DC.

May 06, 2002 Getting Started with Digital Certificates: Is PKI-Lite Real PKI? Internet2 Spring Meeting 2002 Wash, DC.
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.

Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E IEPG March 2000 APNIC Certificate Authority Status Report.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E IEPG March 2000 APNIC Certificate Authority Status Report.
© Southampton City Council Sean Dawtry – Southampton City Council The Southampton Pathfinder for Smart Cards in public services.

© Southampton City Council Sean Dawtry – Southampton City Council The Southampton Pathfinder for Smart Cards in public services.
Access management for repositories: challenges and approaches for MAMS James Dalziel Professor of Learning Technology and Director, Macquarie E-Learning.

Access management for repositories: challenges and approaches for MAMS James Dalziel Professor of Learning Technology and Director, Macquarie E-Learning.
Grid Computing Basics From the perspective of security or An Introduction to Certificates.

Grid Computing Basics From the perspective of security or An Introduction to Certificates.
1st Expert Group Meeting (EGM) on Electronic Trade-ECO Cooperation on Trade Facilitation 23-25 May 2012, Kish Island, I.R.IRAN.

1st Expert Group Meeting (EGM) on Electronic Trade-ECO Cooperation on Trade Facilitation May 2012, Kish Island, I.R.IRAN.
SSL & SharePoint IT:Network:Applications. Agenda Secure Socket Layer Encryption 101 SharePoint Customization SharePoint Integration.

SSL & SharePoint IT:Network:Applications. Agenda Secure Socket Layer Encryption 101 SharePoint Customization SharePoint Integration.
SAFE BioPharma Association CONFIDENTIAL1 SAFE Public Key Infrastructure (PKI) 2005 EDUCAUSE/Dartmouth PKI Deployment Summit.

SAFE BioPharma Association CONFIDENTIAL1 SAFE Public Key Infrastructure (PKI) 2005 EDUCAUSE/Dartmouth PKI Deployment Summit.
CREN-Mellon conference, December 1, 2001 University of Texas PKI Status.

CREN-Mellon conference, December 1, 2001 University of Texas PKI Status.
HEPKI-TAG Activities January 2002 CSG Meeting Jim Jokl

HEPKI-TAG Activities January 2002 CSG Meeting Jim Jokl
1 HEPKI-TAG Update EDUCAUSE/Dartmouth PKI Summit July 26, 2005 Jim Jokl University of Virginia.

1 HEPKI-TAG Update EDUCAUSE/Dartmouth PKI Summit July 26, 2005 Jim Jokl University of Virginia.
HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.

HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.
Monitoring and Supervision Seminar 15 June 2006, Rotterdam, The Netherlands Safe and trustworthy access in a working environment: the MoodlePKI project.

Monitoring and Supervision Seminar 15 June 2006, Rotterdam, The Netherlands Safe and trustworthy access in a working environment: the MoodlePKI project.
PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.

PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.

David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.
Dartmouth PKI Deployment Robert Brentrup PKI Summit July 14, 2004.

Dartmouth PKI Deployment Robert Brentrup PKI Summit July 14, 2004.
Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Similar presentations

Ads by Google