Presentation is loading. Please wait.

Presentation is loading. Please wait.

14 th EUGridPMA October 6-8, 2008 Lisbon. 3 rd TAGPMA ‘Austin’ meeting – Nov 2006 - 2 David Groep – CRL NEXT UPDATE.

Published byAlessandra Bugg Modified over 10 years ago

Similar presentations

Presentation on theme: "14 th EUGridPMA October 6-8, 2008 Lisbon. 3 rd TAGPMA ‘Austin’ meeting – Nov 2006 - 2 David Groep – CRL NEXT UPDATE."— Presentation transcript:

1 14 th EUGridPMA October 6-8, 2008 Lisbon

2 3 rd TAGPMA ‘Austin’ meeting – Nov 2006 - 2 David Groep – davidg@eugridpma.org CRL NEXT UPDATE

3 3 rd TAGPMA ‘Austin’ meeting – Nov 2006 - 3 David Groep – davidg@eugridpma.org CRL Facts 1.0 - d1737728 /C=SG/O=Netrust Certificate Authority 1/OU=Netrust CA1 2.0 - 1d879c6c /DC=ch/DC=cern/CN=CERN Trusted Certification Authority 7.0 - 9b59ecad /DC=cz/DC=cesnet-ca/CN=CESNET CA 8.0 - cc800af0 /C=HU/O=NIIF/OU=Certificate Authorities/CN=NIIF Root CA 10.0 - eebc7717 /C=CH/O=Switch -.../CN=SWITCH Server CA 10.0 - 47d3d1a0 /C=CH/O=Switch -.../CN=SWITCH Personal CA 14.0 - 9b95bbf2 /C=US/O=National Center for S.A./OU=Certificate Authorities/CN=CACL 30.0 - 1691b9ba /C=TR/O=TRGrid/CN=TR-Grid CA... 30.0 - 2418a3f3 /DC=bg/DC=acad/CN=BG.ACAD CA 31.0 - 55994d72 /C=RU/O=RDIG/CN=Russian Data-Intensive Grid CA 35.0 - 03aa0ecb /C=BE/O=BELNET/OU=BEGrid/CN=BEGrid CA/emailAddress=gridca@belnet.beCA/emailAddress=gridca@belnet.be 180.0 - 28a58577 /C=GR/O=HellasGrid/OU=Certification A.../CN=HellasGrid Root CA 2006 180.5 - d254cc30 /DC=ch/DC=cern/CN=CERN Root CA... 365.0 - 566bf40f /C=EE/O=Grid/CN=Estonian Grid Certification Authority 366.0 - cf4ba8c8 /C=FR/O=CNRS/CN=CNRS... 548.0 - d0b701c0 /C=CH/O=Switch -.../CN=SWITCHgrid Root CA 731.0 - 98ef0ee5 /C=UK/O=eScienceRoot/OU=Authority/CN=UK e-Science Root

4 3 rd TAGPMA ‘Austin’ meeting – Nov 2006 - 4 David Groep – davidg@eugridpma.org Classic Profile  Validity between 7 and 30 days  7 day CRLs implies continuous issuance

5 3 rd TAGPMA ‘Austin’ meeting – Nov 2006 - 5 David Groep – davidg@eugridpma.org SLCS Profile  Validity between 3 days and ∞

6 3 rd TAGPMA ‘Austin’ meeting – Nov 2006 - 6 David Groep – davidg@eugridpma.org Issues seen  Netrust CRL of 1 day triggers many warnings  PMA warnings of actual invalidity are common  Unavailability fo CRL is on average 20% at any time  The CERN TCA CRL of 2 days hardly causes any actual problems  A warning once every few months  The CESNET CRL of 7 days causes no problems  Manual 30 day CRLs give incidental problems

7 3 rd TAGPMA ‘Austin’ meeting – Nov 2006 - 7 David Groep – davidg@eugridpma.org Proposal  Harmonize period between SLCS and Classic AP  at least 3 days before expiration  Only for on-line auto-generated CRLs  Manually generated CRLs and CRLs for off-line CAs stay at 7 days  Max life time for Classis AP stays at 30 days for issuing CAs

Download ppt "14 th EUGridPMA October 6-8, 2008 Lisbon. 3 rd TAGPMA ‘Austin’ meeting – Nov 2006 - 2 David Groep – CRL NEXT UPDATE."

Similar presentations

Amsterdam 7-8-9/03/01 WP6 Information Service Which information in the Globus IS ? Users Administrators Applications Ressources … Access to informations.

Amsterdam 7-8-9/03/01 WP6 Information Service Which information in the Globus IS ? Users Administrators Applications Ressources … Access to informations.
Marcus Pattloch (DFN-Verein) DESY Technisches Seminar

Marcus Pattloch (DFN-Verein) DESY Technisches Seminar
2 nd APGrid PMA F2F Meeting Osaka University Convention Center October 15 09:00 - 17:20 # Participants: 26.

2 nd APGrid PMA F2F Meeting Osaka University Convention Center October 15 09: :20 # Participants: 26.
EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks Interoperability AAI and Grids Christoph.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Interoperability AAI and Grids Christoph.
EGEE-II INFSO-RI-031688 Enabling Grids for E-sciencE www.eu-egee.org EGEE and gLite are registered trademarks MyProxy and EGEE Ludek Matyska and Daniel.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks MyProxy and EGEE Ludek Matyska and Daniel.
Usage of PGP in TACAR 19th OGF Meeting Chapel Hill, USA February 1, 2007 Licia Florio Project Development Officer

Usage of PGP in TACAR 19th OGF Meeting Chapel Hill, USA February 1, 2007 Licia Florio Project Development Officer
Updates of the APGrid PMA Catania March 3, 2009 Yoshio Tanaka APGridPMA Chair, AIST, Japan.

Updates of the APGrid PMA Catania March 3, 2009 Yoshio Tanaka APGridPMA Chair, AIST, Japan.
© 2007 Open Grid Forum CAOPS-WG Christos Kanellopoulos - Yoshio Tanaka Security Area coordination & outreach OGF25, Catania March 2 nd – 3 rd, 2009.

© 2007 Open Grid Forum CAOPS-WG Christos Kanellopoulos - Yoshio Tanaka Security Area coordination & outreach OGF25, Catania March 2 nd – 3 rd, 2009.
10 th EUGridPMA Meeting graciously hosted by ULAKBIM Istanbul, TR.

10 th EUGridPMA Meeting graciously hosted by ULAKBIM Istanbul, TR.
APGrid PMA Face-to-Face Meeting NCHC CA Weicheng Huang National Center for High-performance Computing April 8, 2008.

APGrid PMA Face-to-Face Meeting NCHC CA Weicheng Huang National Center for High-performance Computing April 8, 2008.
Classic X.509 secured profile version 4.2 Proposed Changes David Groep, Apr 20 th, 2009.

Classic X.509 secured profile version 4.2 Proposed Changes David Groep, Apr 20 th, 2009.
Updates from the EUGridPMA David Groep, March 8 th, 2010.

Updates from the EUGridPMA David Groep, March 8 th, 2010.
4 th APGrid PMA F2F Meeting Academia Sinica, Taipei, Taiwan April 8, 2008 Agendahttp://www.apgridpma.org/meetings/index.html Call for note takers!

4 th APGrid PMA F2F Meeting Academia Sinica, Taipei, Taiwan April 8, 2008 Agendahttp:// Call for note takers!
NRENs supporting Grids using current Grid technology TERENA NREN-GRID Workshop Amsterdam 2005-10-17 Milan Sova CESNET.

NRENs supporting Grids using current Grid technology TERENA NREN-GRID Workshop Amsterdam Milan Sova CESNET.
CVE-2008-0166, lessons learned and actions David Groep, Nov 7 nd, 2008.

CVE , lessons learned and actions David Groep, Nov 7 nd, 2008.
Updates from the EUGridPMA David Groep, Oct 11 th, 2011.

Updates from the EUGridPMA David Groep, Oct 11 th, 2011.
Updates from the EUGridPMA David Groep, Apr 8 nd, 2008.

Updates from the EUGridPMA David Groep, Apr 8 nd, 2008.
12-May-03D.P.Kelsey, SCG Online Authentication1 Online Authentication SCG Meeting EDG Barcelona, 12 May 2003 David Kelsey CCLRC/RAL, UK

12-May-03D.P.Kelsey, SCG Online Authentication1 Online Authentication SCG Meeting EDG Barcelona, 12 May 2003 David Kelsey CCLRC/RAL, UK
The CA Distribution Process David Groep, July 2007.

The CA Distribution Process David Groep, July 2007.
Classic X.509 secured profile version 4.2 Proposed Changes David Groep, Nov 7 nd, 2008.

Classic X.509 secured profile version 4.2 Proposed Changes David Groep, Nov 7 nd, 2008.

Similar presentations

Ads by Google