Manager, Product Evaluation

Slides:



Advertisements
Similar presentations
1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.
Advertisements

Thomas S. Messerges, Ezzat A. Dabbish Motorola Labs Shin Seung Uk.
Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
Key distribution and certification In the case of public key encryption model the authenticity of the public key of each partner in the communication must.
Notes: Update as of 1/13/2010. Vulnerabilities are included for SQL Server 2000, SQL Server 2005, SQL Server Oracle (8i, 9i, 9iR2, 10g, 10gR2,11g),
PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.
© Southampton City Council Sean Dawtry – Southampton City Council The Southampton Pathfinder for Smart Cards in public services.
Deploying and Managing Active Directory Certificate Services
Auditing Computer-Based Information Systems
Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.
Identity Standards (Federal Bridge Certification Authority – Certificate Lifecycle) Oct,
1 Evaluating Systems CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 6, 2004.
Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.
DESIGNING A PUBLIC KEY INFRASTRUCTURE
Graduated CC Protection Profiles for Cryptographic Modules Bundesamt für Sicherheit in der Informationstechnik (BSI) (Federal Office for Information Security)
Information Security Policies and Standards
Edward Tsai – CS 239 – Spring 2003 Strong Security for Active Networks CS 239 – Network Security Edward Tsai Tuesday, May 13, 2003.
Chapter 2 Access Control Fundamentals. Chapter Overview Protection Systems Mandatory Protection Systems Reference Monitors Definition of a Secure Operating.
Applied Cryptography for Network Security
DITSCAP Phase 2 - Verification Pramod Jampala Christopher Swenson.
Long-term Archive Service Requirements draft-ietf-ltans-reqs-00.txt.
Christopher Chapman | MCT Content PM, Microsoft Learning, PDG Planning, Microsoft.
Key Management in Cryptography
Configuring and Troubleshooting Identity and Access Solutions with Windows Server® 2008 Active Directory®
11 CERTIFICATE SERVICES AND SECURE AUTHENTICATION Chapter 10.
Course 6421A Module 7: Installing, Configuring, and Troubleshooting the Network Policy Server Role Service Presentation: 60 minutes Lab: 60 minutes Module.
1 HIPAA Security Overview Centers for Medicare & Medicaid Services (CMS)
Effectively Integrating Information Technology (IT) Security into the Acquisition Process Section 5: Security Controls.
Practical IS security design in accordance with Common Criteria Security and Protection of Information 2005 František VOSEJPKA S.ICZ a.s. June 5, 2005.
S New Security Developments in DICOM Lawrence Tarbox, Ph.D Chair, DICOM WG 14 (Security) Siemens Corporate Research.
Introduction to Secure Messaging The Open Group Messaging Forum April 30, 2003.
Health Insurance Portability and Accountability Act of 1996 (HIPAA) Proposed Rule: Security and Electronic Signature Standards.
General Key Management Guidance. Key Management Policy  Governs the lifecycle for the keying material  Hope to minimize additional required documentation.
Configuring and Troubleshooting Identity and Access Solutions with Windows Server® 2008 Active Directory®
Key Management with the Voltage Data Protection Server Luther Martin IEEE P May 7, 2007.
Java Security Pingping Ma Nov 2 nd, Overview Platform Security Cryptography Authentication and Access Control Public Key Infrastructure (PKI)
Practices in Security Bruhadeshwar Bezawada. Key Management Set of techniques and procedures supporting the establishment and maintenance of keying relationships.
Public Key Infrastructure (X509 PKI) Presented by : Ali Fanian.
Cryptography Encryption/Decryption Franci Tajnik CISA Franci Tajnik.
Security Architecture and Design Chapter 4 Part 3 Pages 357 to 377.
1 Common Criteria Ravi Sandhu Edited by Duminda Wijesekera.
Certificate-Based Operations. Module Objectives By the end of this module participants will be able to: Define how cryptography is used to secure information.
Chapter 21 Distributed System Security Copyright © 2008.
Security Overview  System protection requirements areas  Types of information protection  Information Architecture dimensions  Public Key Infrastructure.
CACR CC Briefing Stephen Booth Computer and System Security Section Communications Security Establishment
Page 1 ©1999 InfoGard Laboratories, Inc Centre for Applied Cryptographic Research workshop, Nov. 8, 1999 Third party evaluations of CA cryptographic implementations.
Public Key Infrastructure (X509 PKI) Presented by : Ali Fanian
Database Security Outline.. Introduction Security requirement Reliability and Integrity Sensitive data Inference Multilevel databases Multilevel security.
Action SecWG1012:9 “Investigate how role-based access, in compliance with FIPS 140-2, can be used by flight crypto systems.” Where this question comes.
Who’s watching your network The Certificate Authority In a Public Key Infrastructure, the CA component is responsible for issuing certificates. A certificate.
Chapter 2 Securing Network Server and User Workstations.
1 Network Security Lecture 7 Overview of Authentication Systems Waleed Ejaz
DIGITAL SIGNATURE.
Security fundamentals Topic 2 Establishing and maintaining baseline security.
Module 2: Introducing Windows 2000 Security. Overview Introducing Security Features in Active Directory Authenticating User Accounts Securing Access to.
Creating and Managing Digital Certificates Chapter Eleven.
Database Security Cmpe 226 Fall 2015 By Akanksha Jain Jerry Mengyuan Zheng.
The world leader in serving science Overview of Thermo 21 CFR Part 11 tools Overview of software used by multiple business units within the Spectroscopy.
Chapter 19: Building Systems with Assurance Dr. Wayne Summers Department of Computer Science Columbus State University
Chapter 21: Evaluating Systems Dr. Wayne Summers Department of Computer Science Columbus State University
LINUX Presented By Parvathy Subramanian. April 23, 2008LINUX, By Parvathy Subramanian2 Agenda ► Introduction ► Standard design for security systems ►
Chapter 29: Program Security Dr. Wayne Summers Department of Computer Science Columbus State University
Prof. Reuven Aviv, Nov 2013 Public Key Infrastructure1 Prof. Reuven Aviv Tel Hai Academic College Department of Computer Science Public Key Infrastructure.
Security Functional Requirements Kashif Imran. Overview Common Criteria Protection Profiles Security Objectives Security Requirements Security Functional.
19 Copyright © 2008, Oracle. All rights reserved. Security.
Functions of a Database Management System
Official levels of Computer Security
Chapter 19: Building Systems with Assurance
Chapter 29: Program Security
Instructor Materials Chapter 5: Ensuring Integrity
Presentation transcript:

Manager, Product Evaluation The Trusted PKI Marc Laroche Manager, Product Evaluation marc.laroche@entrust.com (613) 247-3446

Agenda The Entrust PKI, an overview Evaluation approach Common Criteria Certification: Functionality and assurance covered What is next? Entrust/PKI v5.0 evaluation Summary

Entrust/PKI The main components Entrust/Authority Database CM LDAP CRL OS Entrust/Authority Database CM LDAP OS CRL X.500 Directory

Entrust/PKI The main components Entrust/Authority Entrust/RA Admin API OS Entrust/Authority Entrust/RA Admin API Database CM CM PKIX-CMP OS LDAP OS CRL X.500 Directory

Entrust/PKI The main components Entrust/Authority Entrust/RA Admin API OS Entrust/Authority Entrust/RA Admin API Database CM CM PKIX-CMP OS LDAP OS Entrust-Ready Applications Other CAs OS CRL CM OS X.500 Directory Other Applications

Evaluation Scope Database Entrust/Authority CM Entrust/RA CM CRL ADM API PKIX-CMP CRL Other Applications CM X.500 Directory Entrust-Ready Applications

Evaluation Scope Database Entrust/Authority CM Entrust/RA CM CRL ADM API PKIX-CMP CRL Non Entrust-Ready Applications CM X.500 Directory Entrust-Ready Applications

Evaluation Scope Database Entrust/Authority CM Entrust/RA CM CRL ADM API PKIX-CMP CRL Non Entrust-Ready Applications CM X.500 Directory Entrust-Ready Applications

Evaluation Scope Database Entrust/Authority CM Entrust/RA CM CRL ADM API PKIX-CMP CRL Non Entrust-Ready Applications CM X.500 Directory Entrust-Ready Applications

Entrust/PKI 4.0a Certification: Evaluated Functionality User identification and authentication Entrust/Authority CM Entrust/RA ADM API CM PKIX-CMP Other CAs End-Entities

User identification and authentication User I&A before any action (FIA_UID.2 and FIA_UIA.2) Password rules (FIA_SOS.1) Single use authentication for user initialization, key recovery and enabling of CA cross-certification (FIA_UAU.4) Enforced re-authentication to complete sensitive operations and after session time-out has occurred (FIA_UAU.6) Protected authentication feedback (FIA_UAU.7) Authentication failure handling (FIA_AFL.1)

Access Control Entrust/Authority CM Functions Entrust/RA CM Data ADM API CM Data PKIX-CMP Access Control Mediation User Id Role Privileges Other CAs End-Entities

Access Control Complete access control on CA data objects (e.g. CA signing key, user privilege vector, policy, etc) and functions (FDP_ACC.2) Security attribute based access control (i.e. user id, role and permissions) (FDP_ACF.1) Secure management of security attributes, including access control and enforcement of secure values (FMT_MSA.1, FMT_MSA.2, FMT_MSA.3, FIA_ATD.1) Secure management of security enforcing data objects (e.g. integrity check rate, database encryption algorithm, CA signing algorithm, etc.), including access control and enforcement of secure values (FMT_MTD.1 and FMT_MTD.3)

Separation of duties Security Officer Administrator Master User Entrust/Authority CM Entrust/RA Administrator ADM API CM Master User PKIX-CMP Auditor End User Directory Administrator Others (Custom-defined)

Separation of duties Maintenance of roles and associations between users and roles (FMT_SMR.2) Management of security functions behavior restricted to distinct roles (FMT_MOF.1 and FMT_SAE.1)

Key Management Database Entrust/Authority CM Entrust/RA X.509v3 CM PKCS#1,3 FIPS 140-1 FIPS 186-1 PKIX-CMP CM ADM API CRL CM X.500 Directory End User

Key Management Certificate-based key management that meets the following standards: X.509v3, PKCS#1 and 3, FIPS 140-1 and 186-1, LDAP, PKIX-CMP (FCS_CKM.2) User initialization, key update, key recovery and encryption key back-up IAW PKIX-CMP and FIPS 140-1 (FCS_CKM.3) Use of secrets generated by a FIPS 140-1 cryptographic module is enforced (FIA_SOS.2)

Audit Audit records are generated for a defined list of events; each record includes: log number, event description, severity level, user id, user type and state (FAU_GEN.1 and FAU_GEN.2) Any modification to audit records is detected (FAU_STG.2) Privileged users are provided with the capability to read audit records and look for specific information based on user-defined search criteria (FAU_SAR.1 and FAU_SAR.3) Database Entrust/Authority CM Entrust/RA ADM API CM X.500 Directory CRL PKIX-CMP End Users Other CAs

Trusted Path and Data Protection Database Entrust/Authority CM Entrust/RA ADM API CM PKIX-CMP CRL CM X.500 Directory End Users Other CAs

Trusted Path and Data Protection Communications with remote administrative users, end users and external CAs are authenticated and protected from modification and disclosure (FTP_TRP.1) Communications involved with automatic key management operations (e.g. key update) are protected from modification and disclosure (FTP_ITC.1) The access control policy is enforced when data is transmitted and received, and modification, deletion, insertion or replay is detected (FPT_ITI.1) Exchanged data is consistently interpreted (FPT_TDC.1) Generation of evidence of origin for CA certificates, user certificates, CRLs and ARLs is enforced, and the capability to verify the evidence of origin is provided (FCO_NRO.2)

Trusted Path and Data Protection (continued) Generation of evidence that can be used as a guarantee of the validity of CA certificates, user certificates, CRLs and ARLs is enforced, and the capability to verify evidence of the validity is provided (FDP_DAU.1) Data stored in the local database is monitored for integrity errors (FDP_SDI.1)

Non-bypassability Security enforcing functions are invoked and succeed before each function within the CA allowed to proceed (FPT_RVM.1)

Cryptographic services (Environmental) Database Entrust/Authority CM Entrust/RA CM ADM API PKIX-CMP CRL CM End-Users X.500 Directory

Cryptographic services Key and secret generation is performed by a FIPS 140-1 validated module (FCS_CKM.1 and FIA_SOS.2.1) All plaintext keys are zeroized by a FIPS 140-1 validated cryptographic module (FCS_CKM.4) All cryptographic operations, including pseudo-random number generation, short term key storage, encryption/decryption, signature generation and verification, hashing and MAC generation and verification are performed by a FIPS 140-1 validated cryptographic module (FCS_COP.1)

Abstract Machine Services (Environmental) Reliable time stamps are provided for own use (FPT_STM.1) Audit records are protected against unauthorized deletion (FAU_STG.2.1) A security domain for own execution is maintained, which provides protection against interference and tampering by untrusted applications (FPT_SEP.1) OS OS Entrust/Authority CM Audit Entrust/RA ADM API CM PKIX-CMP Time Time

And what EAL3+ means … Internal development processes and systems were documented and reviewed. Configuration management (source code, documentation, test plans); evidence that CM is actually used; measures that allow only authorized changes to configuration items. Security measures (physical, procedural, personnel and other used to protect the development environment). Flaw reporting procedures + Problem tracking + Product delivery Design was documented and reviewed for conformance with claimed functionality. Informal functional specification High-level design (description of security functions in terms of subsystems and relates subsystems to the functions that they provide; description of the interfaces between these subsystems).

Continued ... User documentation was reviewed: Installation guidance Administrative guidance Informal correspondence demonstration was reviewed: More abstract representation (claimed functionality) is correctly and completely refined in the less abstract representation (FS and HLS). Test plans, test procedures, expected test results and actual test results were submitted and reviewed: Demonstrate that each security function was tested against the functional specification in a systematic manner. Demonstrate that the tests are sufficient to confirm that the security functions operate IAW the High-Level Design; demonstrate that the internal interfaces are exercised. Vulnerability analysis was submitted and reviewed. Categorization report was submitted and reviewed.+ subcomponents are described as security enforcing or not.

Entrust/PKI 5.0 evaluation: Augmented from 4.0a Functionality Enforced proof of receipt - keys and certificate (FCO_NRR.2) Residual information protection (FDP_RIP.1) Automated recovery of services (FPT_RCV.2) Replay detection - certificate request (FPT_RPL.1) Session locking (FTA_SSL.1 and FTA_SSL.2) Assurance - EAL-CS2 ADV_SPM.1 Informal TOE security policy model AVA_MSU.2 Validation of analysis

In summary The Entrust/PKI evaluations cover: cryptographic services essential public key management functionality supportive security critical functionality The Common Criteria certification serves as a fundamental extension to the FIPS 140-1 process. The selected CC assurance components (EAL3+) provide a maximum amount of confidence consistent with existing best practices for COTS development.

Questions? For more information: http://www.entrust.com/entrust/validation.htm E-mail: marc.laroche@entrust.com Tel: (613)247-3446

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.