Presentation is loading. Please wait.

Presentation is loading. Please wait.

Trusted Key Server OpenPKSD TKS Hironobu SUZUKI IWFST 2005 International Workshop on Future Software Technology.

Published byMercy Golden Modified over 8 years ago

Similar presentations

Presentation on theme: "Trusted Key Server OpenPKSD TKS Hironobu SUZUKI IWFST 2005 International Workshop on Future Software Technology."— Presentation transcript:

1 Trusted Key Server OpenPKSD TKS Hironobu SUZUKI hironobu@openpksd.org hironobu@h2np.net IWFST 2005 International Workshop on Future Software Technology 2005 November 8 – 10, 2005 in Shanghai, China

2 What Is OpenPGP OpenPGP is a public key cryptography technology specification as defined RFC2440 PGP was developed by Philip Zimmermann OpenPGP provides encryption, decryption, digital signature and others

3 Why We Need It? File verify for distribution –To distribute collect file –To avoid Trojan horse Source code exchange –Between trustworthy developer Example –Debian developer community use OpenPGP among them

4 Public Key Scheme Alice generates a pair of public key and secret key Alice sends a public key Bob Bob make text encrypt using Alice’s public key and bob sends encrypted text to Alice Only Alice can decrypt using her own secret key

5 Digital Signature Scheme Alice generates a pair of sign key and verify key Alice sends a verify key to bob Alice signs on Alice’s data using Alice’s sign key and send signed data to bob Bob can verify Alice’s signed data using Alice’s verify key

6 Where Is Alice’s Public/Verify Key? Email –Do you want to send email again, again and again? Personal website –Not too bad Keyserver –Easy to find it –Pgp public key servers have been available since 1994 –OpenPKSD that is ruby version of keyserver has been available at http://openpksd.org since 2002

7 Old Style Keyserver Alice can’t handle her own public key –Cathy can put Alice’s public key –David can put his signature on Alice’s public key Alice doesn't want either

8 Key owner Third party signer Key user Current Keyserer’s key flow chart

9 OpenPKSD TKS Successor of OpenPKSD that is written in Ruby –Ruby is good for rapid programming –True Object Oriented language I introduced OpenPKSD in Ruby Conference 2002 Seattle Public key owners can handle their own key under OpenPKSD TKS (trusted key server) –Because TKS has their own public keys Free Software –Free as in speech not as in beer

10 Key owner Third party key signer Key user TKS’s Key flow chart

11 PostgreSQL Apache2 Cgi scripts OpenPGP Packet Class OpenPKSD Class TKS Class DB handle Class Bit manipulate module (Written in C) GNU gpg commnd Structure of OpenPKS TKS

12 Status of OpenPKSD TKS Project Prototype developing was started in December 2004 and finished September 2005 Test site http://tks.openpksd.org will be started next few month Trusted keyserver service will start in April 2006

13 Summary Digital Signature is required for Free Software/Open Source developers OpenPKSD provides public key exchange infrastructure OpenPKSD Trusted Keyserver, new version keyserver server system is coming soon. Ruby is a strong glue between Apache2, extra- modules and Database and is good for server application

Download ppt "Trusted Key Server OpenPKSD TKS Hironobu SUZUKI IWFST 2005 International Workshop on Future Software Technology."

Similar presentations

1 Key Exchange Solutions Diffie-Hellman Protocol Needham Schroeder Protocol X.509 Certification.

1 Key Exchange Solutions Diffie-Hellman Protocol Needham Schroeder Protocol X.509 Certification.
Key Management. Shared Key Exchange Problem How do Alice and Bob exchange a shared secret? Offline – Doesnt scale Using public key cryptography (possible)

Key Management. Shared Key Exchange Problem How do Alice and Bob exchange a shared secret? Offline – Doesnt scale Using public key cryptography (possible)
COS 461 Fall 1997 Todays Lecture u intro to security in networking –confidentiality –integrity –authentication –authorization u orientation for assignment.

COS 461 Fall 1997 Todays Lecture u intro to security in networking –confidentiality –integrity –authentication –authorization u orientation for assignment.
CIS 193A – Lesson6 CRYPTOGRAPHY RAPELCGRQ. CIS 193A – Lesson6 Focus Question Which cryptographic methods help computer users maintain confidentiality,

CIS 193A – Lesson6 CRYPTOGRAPHY RAPELCGRQ. CIS 193A – Lesson6 Focus Question Which cryptographic methods help computer users maintain confidentiality,
Csci5233 Computer Security1 Bishop: Chapter 10 (Cont.) Key Management: Certificates.

Csci5233 Computer Security1 Bishop: Chapter 10 (Cont.) Key Management: Certificates.
PGP Overview 2004/11/30 Information-Center meeting peterkim.

PGP Overview 2004/11/30 Information-Center meeting peterkim.
Pretty Good Privacy (PGP). How PGP works PGP uses both public-key cryptography and symmetric key cryptography, and includes a system which binds the public.

Pretty Good Privacy (PGP). How PGP works PGP uses both public-key cryptography and symmetric key cryptography, and includes a system which binds the public.
15-1 Last time Internet Application Security and Privacy Public-key encryption Integrity.

15-1 Last time Internet Application Security and Privacy Public-key encryption Integrity.
CSCI283 Fall 2005 GWU All slides from Bishop’s slide set Public Key Infrastructure (PKI)

CSCI283 Fall 2005 GWU All slides from Bishop’s slide set Public Key Infrastructure (PKI)
Apr 9, 2002Mårten Trolin1 Previous lecture TLS details –Phases Handshake Securing messages –What the messages contain –Authentication The second assignment.

Apr 9, 2002Mårten Trolin1 Previous lecture TLS details –Phases Handshake Securing messages –What the messages contain –Authentication The second assignment.
95-712 OOP/Java1 Public Key Crytography From: Introduction to Algorithms Cormen, Leiserson and Rivest.

OOP/Java1 Public Key Crytography From: Introduction to Algorithms Cormen, Leiserson and Rivest.
Feb 25, 2003Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.

Feb 25, 2003Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.
November 1, 2006Sarah Wahl / Graduate Student UCCS1 Public Key Infrastructure By Sarah Wahl.

November 1, 2006Sarah Wahl / Graduate Student UCCS1 Public Key Infrastructure By Sarah Wahl.
20-751 ECOMMERCE TECHNOLOGY FALL 2003 COPYRIGHT © 2003 MICHAEL I. SHAMOS Cryptography.

ECOMMERCE TECHNOLOGY FALL 2003 COPYRIGHT © 2003 MICHAEL I. SHAMOS Cryptography.
1 Key Establishment Symmetric key problem: How do two entities establish shared secret key in the first place? Solutions: Deffie-Hellman trusted key distribution.

1 Key Establishment Symmetric key problem: How do two entities establish shared secret key in the first place? Solutions: Deffie-Hellman trusted key distribution.
Mar 4, 2003Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities.

Mar 4, 2003Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities.
8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.

8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.
Mar 5, 2002Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.

Mar 5, 2002Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.
1 Key Establishment Symmetric key problem: How do two entities establish shared secret key over network? Solution: trusted key distribution center (KDC)

1 Key Establishment Symmetric key problem: How do two entities establish shared secret key over network? Solution: trusted key distribution center (KDC)
The Idea of Public Key Cryptography Cunsheng Ding HKUST, Hong Kong.

The Idea of Public Key Cryptography Cunsheng Ding HKUST, Hong Kong.

Similar presentations

Ads by Google