Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 PKI Disaster Recovery and Key Rollover Bull S.A.S.

Published byClaire Patterson Modified over 8 years ago

Similar presentations

Presentation on theme: "1 PKI Disaster Recovery and Key Rollover Bull S.A.S."— Presentation transcript:

1 1 PKI Disaster Recovery and Key Rollover Denis.Pinkas@bull.net Bull S.A.S.

2 2 The topic was originally proposed at the IETF meeting from July 2001 under the name : PKI Disaster Planning and Recovery. There was no interest at that time in the PKIX WG, but many individual demands came later for getting the draft,... even years later. The initial document has been fully redrafted with Joel Kazin, as co-editor. It is proposed as an INFORMATIONAL RFC.

3 3 General topics The draft identifies various ways to recover from exceptional situations, like private key-compromise or private key-loss and to quickly restore normal operations: it allows to build a disaster recovery plan. Private key-compromise or a private key-loss may happen to : –End-entities, –Certification Authorities, –Revocation Authorities, –Attribute Authorities, or –Time-Stamping Authorities. Denial of service attacks on CRL Repositories is considered. Since certificates have finite validity, CA key-rollover is considered so that it can be planned in advance.

4 4 End-Entities The cases are different whether the keys are used for authentication, message-confidentiality or non repudiation (i.e. content commitment). The cases are also different for : –keys used to decrypt stored data (Data-at-Rest), and –keys used to decrypt communications (Data-in-Transit).

5 5 CAs Different cases apply to: –Root CA key-compromise, –Intermediate CA key-compromise. If a CA has issued 10 millions certificates in smartcards, and its issuing private key is compromise, the draft describes a solution, to quickly recover from that situation without re-issuing 10 millions smartcards.

6 6 Revocation Authorities Addresses: –CRL Issuers, and –OCSP Responders. Makes the difference between: –key-compromise within certificate life-time, –key-compromise beyond certificate life-time.

7 7 Attribute Authorities Addresses: –Attribute certificate revocation, –Attribute Authority Key compromise, –Attribute Authority Key loss.

8 8 Time-Stamping Authorities Addresses: –Time-Stamping Unit Key loss, and –Time-Stamping Unit Key compromise. Makes the difference between a compromise: –during the validity period of the TSU certificate, and –after the end of the validity period of the TSU certificate.

9 9 CRL Repositories Addresses the case of hiding an "emergency CRL" by performing a denial of service attack. Suggests to add a rule in the validation policy: Whenever a CRL is needed, look for it in a cache : - if not present, fetch the CRL as usual and place it in the cache with the time when it was fetched, and use it; - if present, look for the time when it was fetched, and only use it if it was fetched earlier than x minutes, otherwise, look for a new CRL, and use it.

10 10 Proposed way forward The proposal is to progress the document as a WG document rather than an individual contribution, so that it will be referenced on the PKIX web page. In order to achieve this goal, it is requested: –to consider the acceptance of this work item by PKIX WG, –then, to include this work-item in the work plan. The benefits will be to be able to improve the draft using the expertise from the WG participants.

Download ppt "1 PKI Disaster Recovery and Key Rollover Bull S.A.S."

Similar presentations

A Profile for Trust Anchor Material for the Resource Certificate PKI Geoff Huston SIDR WG IETF 74.

A Profile for Trust Anchor Material for the Resource Certificate PKI Geoff Huston SIDR WG IETF 74.
Chapter 14 – Authentication Applications

Chapter 14 – Authentication Applications
Certificates Last Updated: Aug 29, 2013. A certificate was originally created to bind a subject to the subject’s public key Intended to solve the key.

Certificates Last Updated: Aug 29, A certificate was originally created to bind a subject to the subject’s public key Intended to solve the key.
Resource Certificate Profile Geoff Huston, George Michaelson, Rob Loomans APNIC IETF 67.

Resource Certificate Profile Geoff Huston, George Michaelson, Rob Loomans APNIC IETF 67.
CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.
Identity Standards (Federal Bridge Certification Authority – Certificate Lifecycle) Oct, 17 2012.

Identity Standards (Federal Bridge Certification Authority – Certificate Lifecycle) Oct,
HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.

HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.
MPKI Interoperability I-D ChangeLog from -01 to -02 Jan 16, 2004 Masaki SHIMAOKA SECOM Trust.net.

MPKI Interoperability I-D ChangeLog from -01 to -02 Jan 16, 2004 Masaki SHIMAOKA SECOM Trust.net.
Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.

Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.

Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.
Resource PKI: Certificate Policy & Certification Practice Statement Dr. Stephen Kent Chief Scientist - Information Security.

Resource PKI: Certificate Policy & Certification Practice Statement Dr. Stephen Kent Chief Scientist - Information Security.
An In-Depth Examination of PKI Strengths, Weaknesses and Recommendations.

An In-Depth Examination of PKI Strengths, Weaknesses and Recommendations.
APNIC Trial of Certification of IP Addresses and ASes RIPE 52 Plenary George Michaelson Geoff Huston.

APNIC Trial of Certification of IP Addresses and ASes RIPE 52 Plenary George Michaelson Geoff Huston.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
Resource Certificate Profile SIDR WG Meeting IETF 66, July 2006 draft-ietf-sidr-res-certs-01 Geoff Huston Rob Loomans George Michaelson.

Resource Certificate Profile SIDR WG Meeting IETF 66, July 2006 draft-ietf-sidr-res-certs-01 Geoff Huston Rob Loomans George Michaelson.
CS526 – Advanced Internet And Web Systems Semester Project Public Key Infrastructure (PKI) By Samatha Sudarshanam.

CS526 – Advanced Internet And Web Systems Semester Project Public Key Infrastructure (PKI) By Samatha Sudarshanam.
CN1276 Server Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+

CN1276 Server Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+
CERTIFICATES “a document containing a certified statement, especially as to the truth of something ”

CERTIFICATES “a document containing a certified statement, especially as to the truth of something ”
CS470, A.SelcukPKI1 Public Key Infrastructures CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukPKI1 Public Key Infrastructures CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

Similar presentations

Ads by Google