Presentation is loading. Please wait.

Presentation is loading. Please wait.

April 20023CSG11 Electronic Commerce Authentication John Wordsworth Department of Computer Science The University of Reading Room.

Published byDwight Peters Modified over 8 years ago

Similar presentations

Presentation on theme: "April 20023CSG11 Electronic Commerce Authentication John Wordsworth Department of Computer Science The University of Reading Room."— Presentation transcript:

1 April 20023CSG11 Electronic Commerce Authentication John Wordsworth Department of Computer Science The University of Reading J.B.Wordsworth@rdg.ac.uk Room 129, Ext 6544

2 April 20023CSG12 Lecture objectives Explain the meaning of authentication and non- repudiation, and how they complement encryption. Describe the use of digital signatures in message authentication. Describe the use of digital certificates. Explain the role of certification authorities.

3 April 20023CSG13 What is authentication? Authentication means determining that that the parties to a transaction are who they claim to be. Non-repudiation means not allowing a party to a transaction to say afterwards that they were being impersonated by an impostor. Transactional security needs encryption and authentication.

4 April 20023CSG14 Message digest A message digest allows us to check if a message has been tampered with in transmission. A message digest is a (large) number created from a message by a hash function: MD2, MD4, MD5, SHA-1 If asymmetric encryption is available, message digests are usually transmitted as digital signatures.

5 April 20023CSG15 Alice sends a message Alice’s message in plaintext digital signature hash function message digest RSA Alice’s private key

6 April 20023CSG16 Bob receives Alice’s message Alice’s message in plaintext digital signature hash function message digest RSA Alice’s public key message digest ?

7 April 20023CSG17 Digital certificate Guarantees that a public key belongs to a certain entity. Format governed by international standard: ITU- X.509. Certification authorities issue the certificates; they are trusted third parties. It has the form of a message from the certificate authority signed with its digital signature.

8 April 20023CSG18 Contents of a digital certificate Hierarchical identification (distinguished name) of the entity to which the certificate belongs Hierarchical identification (distinguished name) of the certificate authority Date of issue and expiry of certificate Encryption details Public key of the entity

9 April 20023CSG19 Certification authority Issue certificates to applicants after sufficient enquiry. Applicants need to provide their public key, and proof of identity. Examples: Verisign, RSA Security, Interclear

10 April 20023CSG110 Certificate server Used to provide certificates to users within an organisation that they can use outside. The certificate server is certified by a certification authority. The certificate server issues certificates without further reference to the certification authority.

11 April 20023CSG111 Certificate revocation lists Lists of unexpired certificates that have been compromised Maintained by the certificate authorities Consulted (?) by browsers when a certificate is received from a server

12 April 20023CSG112 Key points Authentication is a necessary complement to encryption for transactional security. Digital signatures can be used to verify that messages have arrived unaltered from their senders. Public keys are verified by certification authorities, who act as trusted third parties, and maintain certificate revocation lists.

Download ppt "April 20023CSG11 Electronic Commerce Authentication John Wordsworth Department of Computer Science The University of Reading Room."

Similar presentations

Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.

Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.
Public Key Management and X.509 Certificates

Public Key Management and X.509 Certificates
Authentication Cristian Solano. Cryptography is the science of using mathematics to encrypt and decrypt data. Public Key Cryptography –Problems with key.

Authentication Cristian Solano. Cryptography is the science of using mathematics to encrypt and decrypt data. Public Key Cryptography –Problems with key.
EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 6 Wenbing Zhao Department of Electrical and Computer Engineering.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 6 Wenbing Zhao Department of Electrical and Computer Engineering.
Cryptographic Techniques Instructor: Jerry Gao Ph.D. San Jose State University URL: May,

Cryptographic Techniques Instructor: Jerry Gao Ph.D. San Jose State University URL: May,
8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.

8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.
Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.

Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.
Cryptographic Technologies

Cryptographic Technologies
1 Digital Signatures CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute April 12, 2004.

1 Digital Signatures CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute April 12, 2004.
Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.

Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.
EEC-484/584 Computer Networks Lecture 16 Wenbing Zhao

EEC-484/584 Computer Networks Lecture 16 Wenbing Zhao
Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.

Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.
Overview of Digital Signatures Introduction To Networks and Communications (CS 555) Presented by Bharath Kongara.

Overview of Digital Signatures Introduction To Networks and Communications (CS 555) Presented by Bharath Kongara.
Computer Science Public Key Management Lecture 5.

Computer Science Public Key Management Lecture 5.
Digital Signature Xiaoyan Guo/102587 Xiaohang Luo/104446.

Digital Signature Xiaoyan Guo/ Xiaohang Luo/
INTRODUCTION Why Signatures? A uthenticates who created a document Adds formality and finality In many cases, required by law or rule Digital Signatures.

INTRODUCTION Why Signatures? A uthenticates who created a document Adds formality and finality In many cases, required by law or rule Digital Signatures.
E-mail Security using Encryption Security Features Message Origin Authentication - verifying that the sender is who he or she says they are Content Integrity.

Security using Encryption Security Features Message Origin Authentication - verifying that the sender is who he or she says they are Content Integrity.

Similar presentations

Ads by Google