Presentation is loading. Please wait.

Presentation is loading. Please wait.

NECTEC-GOC CA A Brief Status Report 13 th APGrid PMA Face-to-Face meeting March 24 th, 2014 Large-Scale Simulation Research Laboratory Information Communications.

Published byBarrie Bates Modified over 8 years ago

Similar presentations

Presentation on theme: "NECTEC-GOC CA A Brief Status Report 13 th APGrid PMA Face-to-Face meeting March 24 th, 2014 Large-Scale Simulation Research Laboratory Information Communications."— Presentation transcript:

1 NECTEC-GOC CA A Brief Status Report 13 th APGrid PMA Face-to-Face meeting March 24 th, 2014 Large-Scale Simulation Research Laboratory Information Communications and Computing Research Unit Large-Scale Simulation Research Laboratory Information Communications and Computing Research Unit National Electronics and Computer Technology Center, Thailand

2 2 Outlines » Overview » Organization » Certificate Status » CP/CPS and Internal Audit » SHA-2 status with example

3 3 Overview » NECTEC-GOC CA operated by Large-Scale Simulation Research Laboratory » Accredited by APGrid PMA in October 2006 » Compilation in Classic AP version 4.2 » Certificates for the collaborators related to NECTEC Grid Computing research. » General Information: » http://gridca.hpcc.nectec.or.th

4 4 Organization » CA Manager » Dr. Sornthep Vannarat » RA and CA Operator » Mr. Suriya U-ruekolan » System Maintenance » Mr. Phithak Thaenkaew

5 5 Certificates Status ( as of Mar 23 2014 ) » Total: issued certificates » User: 151 » Host: 114 » Valid: 26 certificates » User: 7 » Host: 19 » Expired: 199 certificates » User: 144 » Host: 95 » Revoked: none

6 6 CP/CPS and Internal Audit » Current the CP/CPS version 1.3, conforming with RFC 3647 » Modified signature algorithm of the user and host certificates, and, CRL from SHA-1 to SHA-2. » Internal audit » Previous audit: Aug 2013 » Next audit: Aug 2014.

7 7 SHA-2 Status » OpenSSL upgraded from 0.9.7 to 1.0.1 (both RA/CA machines) » Support SHA-2 already » SHA-2 has been started with user/host certificate and also CRL since Jan 2014

8 Certificate Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: C=TH, O=NECTEC, OU=GOC, CN=NECTEC GOC CA Validity Not Before: Jan 27 07:00:39 2014 GMT Not After : Feb 26 07:00:39 2015 GMT Subject: C=TH, O=NECTEC, OU=GOC, CN=lion.lsr.nectec.or.th Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public Key: (1024 bit) Modulus (1024 bit): 00:b2:e1:cd:27:99:95:27:3d:94:84:65:3a:5b:6e: a4:e4:6a:dc:19:c6:da:e8:73:2a:28:4c:74:9b:14: ….. Signature Algorithm: sha256WithRSAEncryption 89:e3:f5:e5:f4:8d:58:3d:8e:a8:04:04:59:bc:1c:da:a9:64: 3a:2f:d6:ff:10:ec:88:a2:01:b5:e2:4f:d5:78:1f:9a:b3:21: 8 Example of SHA-2 with certificate and CRL CRL Certificate Revocation List (CRL): Version 2 (0x1) Signature Algorithm: sha256WithRSAEncryption Issuer: /C=TH/O=NECTEC/OU=GOC/CN=NECTEC GOC CA Last Update: Mar 21 07:03:47 2014 GMT Next Update: Apr 20 07:03:47 2014 GMT CRL extensions: X509v3 Authority Key Identifier: ….. X509v3 CRL Number: 116 No Revoked Certificates. Signature Algorithm: sha256WithRSAEncryption a6:44:81:29:83:84:3e:35:1f:cf:ad:1c:06:3b:20:24:d9:4d: 82:e1:9e:3b:62:bf:6d:ad:62:e8:df:0b:2e:c4:b3:94:fc:ee:

Download ppt "NECTEC-GOC CA A Brief Status Report 13 th APGrid PMA Face-to-Face meeting March 24 th, 2014 Large-Scale Simulation Research Laboratory Information Communications."

Similar presentations

Smart Certificates: Extending X.509 for Secure Attribute Service on the Web October 1999 Joon S. Park, Ph.D. Center for Computer High Assurance Systems.

Smart Certificates: Extending X.509 for Secure Attribute Service on the Web October 1999 Joon S. Park, Ph.D. Center for Computer High Assurance Systems.
Www.euchinagrid.org Liang ZHAO, PKU EUChinaGrid 3 rd Tutorial Nov.25, 2006 Practices on Security Liang ZHAO Peking University.

Liang ZHAO, PKU EUChinaGrid 3 rd Tutorial Nov.25, 2006 Practices on Security Liang ZHAO Peking University.
APGrid PMA Face-to-Face Meeting NCHC CA Weicheng Huang National Center for High-performance Computing April 8, 2008.

APGrid PMA Face-to-Face Meeting NCHC CA Weicheng Huang National Center for High-performance Computing April 8, 2008.
CS5204 – Operating Systems 1 Authentication. CS 5204 – Operating Systems2 Authentication Digital signature validation proves:  message was not altered.

CS5204 – Operating Systems 1 Authentication. CS 5204 – Operating Systems2 Authentication Digital signature validation proves:  message was not altered.
Academia Sinica Grid Computing Certification Authority (ASGCCA) Jinny Chien.

Academia Sinica Grid Computing Certification Authority (ASGCCA) Jinny Chien.
1 ASGCCA Self-Audit Report APGridPMA Jinny Chien March 08 2008.

1 ASGCCA Self-Audit Report APGridPMA Jinny Chien March
CNIC Grid CA/SDG CA Self Audit Kejun (Kevin) Dong Computer Network Information Center (CNIC) Chinese Academy of Sciences APGridPMA F2F.

CNIC Grid CA/SDG CA Self Audit Kejun (Kevin) Dong Computer Network Information Center (CNIC) Chinese Academy of Sciences APGridPMA F2F.
Resource Certificate Profile Geoff Huston, George Michaelson, Rob Loomans APNIC IETF 67.

Resource Certificate Profile Geoff Huston, George Michaelson, Rob Loomans APNIC IETF 67.
Fed/Ed PKI 2008, June Subject Unique Identifier or Equivalent William A. Weems & Mark B. Jones Academic Technology U. Texas Health Science Center at Houston.

Fed/Ed PKI 2008, June Subject Unique Identifier or Equivalent William A. Weems & Mark B. Jones Academic Technology U. Texas Health Science Center at Houston.
CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.
Geneva, Switzerland, 2 June 2014 Introduction to public-key infrastructure (PKI) Erik Andersen, Q.11 Rapporteur, ITU-T Study Group 17 ITU Workshop.

Geneva, Switzerland, 2 June 2014 Introduction to public-key infrastructure (PKI) Erik Andersen, Q.11 Rapporteur, ITU-T Study Group 17 ITU Workshop.
Public Key Management and X.509 Certificates

Public Key Management and X.509 Certificates
HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.

HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.
Federation of Campus PKI and Grid PKI for Academic GOC Management Conformable to APGrid PMA National Institute of Informatics, JAPAN Toshiyuki Kataoka,

Federation of Campus PKI and Grid PKI for Academic GOC Management Conformable to APGrid PMA National Institute of Informatics, JAPAN Toshiyuki Kataoka,
Academia Sinica Grid Computing Certification Authority (ASGCCA) Jinny Chien F2F Meeting 8 th March 2010.

Academia Sinica Grid Computing Certification Authority (ASGCCA) Jinny Chien F2F Meeting 8 th March 2010.
NECTEC-GOC CA APGrid PMA face-to-face meeting. October, 15 2006 Sornthep Vannarat National Electronics and Computer Technology Center, Thailand.

NECTEC-GOC CA APGrid PMA face-to-face meeting. October, Sornthep Vannarat National Electronics and Computer Technology Center, Thailand.
Updates of APGrid PMA 22 June, 2010. Members (15 + 1) 15 Accredited CAs AIST (JP) APAC (AU) ASGC (TW) CNIC (CN), SDG IGCA (IN) IHEP (CN) KEK (JP) KISTI.

Updates of APGrid PMA 22 June, Members (15 + 1) 15 Accredited CAs AIST (JP) APAC (AU) ASGC (TW) CNIC (CN), SDG IGCA (IN) IHEP (CN) KEK (JP) KISTI.
Information Security Fundamentals Major Information Security Problems and Solutions Department of Computer Science Southern Illinois University Edwardsville.

Information Security Fundamentals Major Information Security Problems and Solutions Department of Computer Science Southern Illinois University Edwardsville.
National Institute of Advanced Industrial Science and Technology Self-audit report of AIST GRID CA Yoshio Tanaka Information.

National Institute of Advanced Industrial Science and Technology Self-audit report of AIST GRID CA Yoshio Tanaka Information.
DataGrid WP6 CA meeting, CERN, 12 December 2002 IISAS Certification Authority Jan Astalos Department of Parallel and Distributed Computing Institute of.

DataGrid WP6 CA meeting, CERN, 12 December 2002 IISAS Certification Authority Jan Astalos Department of Parallel and Distributed Computing Institute of.

Similar presentations

Ads by Google