Presentation is loading. Please wait.

Presentation is loading. Please wait.

CS470, A.SelcukPKI1 Public Key Infrastructures CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "CS470, A.SelcukPKI1 Public Key Infrastructures CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk."— Presentation transcript:

1 CS470, A.SelcukPKI1 Public Key Infrastructures CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk

2 CS470, A.SelcukPKI2 Public Key Infrastructure A system to securely distribute & manage public keys. Important for wide-area trust management (e.g., for e-commerce) Ideally consists of –a certification authority –certificate repositories –a certificate revocation mechanism (CRLs, etc.) Many models possible: monopoly, oligarchy, anarchy, etc.

3 CS470, A.SelcukPKI3 Monopoly Model Single organization is the CA for everyone Shortcomings: –no such universally-trusted organization –requires everyone to authenticate physically with the same CA –compromise recovery is difficult (due to single embedded public key) –once established, CA can abuse its position (excessive pricing, etc.) –requires perfect security at CA

4 CS470, A.SelcukPKI4 Monopoly with Registration Authorities CA trusts other organizations (RAs) to check identities, do the initial authentication Solves the problem of physically meeting the CA. Other problems remain. RAs can be incorporated into other models too

5 CS470, A.SelcukPKI5 Delegated CAs Root CA certifies lower-level CAs to certify others All verifiers trust the root CA & verify certificate chains beginning at the root (i.e., the root CA is the trust anchor of all verifiers) E.g., a national PKI, where a root CA certifies institutions, ISPs, universities who in turn certify their members Limitations are similar to monopoly with RAs

6 CS470, A.SelcukPKI6 Oligarchy Many root CAs exists trusted by verifiers The model of web security Solves the problems of single authority (e.g., excessive pricing) Disadvantages: –n security-sensitive sites instead of one. Compromise of any one compromises the whole system –users can easily be tricked into trusting fake CAs. (depending on implementation)

7 CS470, A.SelcukPKI7 Anarchy Each user decides whom to trust & how to authenticate their public keys Certificates issued by arbitrary parties can be stored in public databases, which can be searched to find a path of trust to a desired party Works well for informal, non-sensitive applications (e.g., PGP)

8 CS470, A.SelcukPKI8 Revocation Mechanisms to cancel certificates compromised before expiration Certificate Revocation List (CRL): list of revoked certificates, published periodically by the CA Delta CRLs: Only the changes since the last issue are published Online Revocation Servers: No CRL is published. Verifier queries a central server to check if a certificate has been revoked.

9 CS470, A.SelcukPKI9 Finding Certificate Chains Can be started with the subject sending its certificates to the verifier (e.g., SSL) A directory naming structure can be followed (e.g., DNSsec)

10 CS470, A.SelcukPKI10 X.509 Certificates Common standard for certificate format PKIX: Internet standard for X.509-based PKI Fields (X.509 v3): –version –serial number –signature algorithm identifier –issuer –validity period –subject –subject public key information –signature –standard extensions (key usage limitation, etc.) –other extensions (application & CA specific)

Download ppt "CS470, A.SelcukPKI1 Public Key Infrastructures CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk."

Similar presentations

Computer Science CSC 474Dr. Peng Ning1 CSC 474 Information Systems Security Topic 4.4 Public Key Infrastructure (PKI) Acknowledgment: Slides revised from.

Computer Science CSC 474Dr. Peng Ning1 CSC 474 Information Systems Security Topic 4.4 Public Key Infrastructure (PKI) Acknowledgment: Slides revised from.
Chapter 14 – Authentication Applications

Chapter 14 – Authentication Applications
Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
Cryptography and Network Security Chapter 14

Cryptography and Network Security Chapter 14
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
CS5204 – Operating Systems 1 Authentication. CS 5204 – Operating Systems2 Authentication Digital signature validation proves:  message was not altered.

CS5204 – Operating Systems 1 Authentication. CS 5204 – Operating Systems2 Authentication Digital signature validation proves:  message was not altered.
Grid Computing, B. Wilkinson, 20045a.1 Security Continued.

Grid Computing, B. Wilkinson, 20045a.1 Security Continued.
Certificates Last Updated: Aug 29, 2013. A certificate was originally created to bind a subject to the subject’s public key Intended to solve the key.

Certificates Last Updated: Aug 29, A certificate was originally created to bind a subject to the subject’s public key Intended to solve the key.
1 Lecture 13: Public Key Infrastructure terms PKI trust models –monopoly with registration authorities with delegated certificate authorities –oligarchy.

1 Lecture 13: Public Key Infrastructure terms PKI trust models –monopoly with registration authorities with delegated certificate authorities –oligarchy.
COEN 350 Public Key Infrastructure. PKI Task: Securely distribute public keys. Certificates. Repository for retrieving certificates. Method for revoking.

COEN 350 Public Key Infrastructure. PKI Task: Securely distribute public keys. Certificates. Repository for retrieving certificates. Method for revoking.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
1 ISA 562 Information Systems Theory and Practice 10. Digital Certificates.

1 ISA 562 Information Systems Theory and Practice 10. Digital Certificates.
CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.
Geneva, Switzerland, 2 June 2014 Introduction to public-key infrastructure (PKI) Erik Andersen, Q.11 Rapporteur, ITU-T Study Group 17 ITU Workshop.

Geneva, Switzerland, 2 June 2014 Introduction to public-key infrastructure (PKI) Erik Andersen, Q.11 Rapporteur, ITU-T Study Group 17 ITU Workshop.
Public Key Management and X.509 Certificates

Public Key Management and X.509 Certificates
Report on Attribute Certificates By Ganesh Godavari.

Report on Attribute Certificates By Ganesh Godavari.
Identity Standards (Federal Bridge Certification Authority – Certificate Lifecycle) Oct, 17 2012.

Identity Standards (Federal Bridge Certification Authority – Certificate Lifecycle) Oct,
Chapter 14 From Cryptography and Network Security Fourth Edition written by William Stallings, and Lecture slides by Lawrie Brown, the Australian Defence.

Chapter 14 From Cryptography and Network Security Fourth Edition written by William Stallings, and Lecture slides by Lawrie Brown, the Australian Defence.
Authentication Cristian Solano. Cryptography is the science of using mathematics to encrypt and decrypt data. Public Key Cryptography –Problems with key.

Authentication Cristian Solano. Cryptography is the science of using mathematics to encrypt and decrypt data. Public Key Cryptography –Problems with key.
HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.

HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.

Similar presentations

Ads by Google