Presentation is loading. Please wait.

Presentation is loading. Please wait.

Introduction to DNSSEC ARIN Tutorial April 1, 2001 Edward Lewis

Published byAlexander Conway Modified over 10 years ago

Similar presentations

Presentation on theme: "Introduction to DNSSEC ARIN Tutorial April 1, 2001 Edward Lewis"— Presentation transcript:

1 Introduction to DNSSEC ARIN Tutorial April 1, 2001 Edward Lewis lewis@tislabs.com

2 Slide 2 P R O T E C T I N G Y O U R P R I V A C Y 2lewis@tislabs.com Agenda Overall Description The easy features The complicated features The remaining issues

3 Slide 3 P R O T E C T I N G Y O U R P R I V A C Y 3lewis@tislabs.com Features of DNSSEC Provides protection of host to name server communication remote control, zone transfers, query/response Provides server to server protections ( zone ) authoritative-ness can be proven Provides means to distribute certificates Not a PKI, but a tool that can be used by a PKI Provides a way to secure dynamic update

4 Slide 4 P R O T E C T I N G Y O U R P R I V A C Y 4lewis@tislabs.com Components of DNSSEC TSIG, SIG(0), and TKEY Close-quarters, shared secret security for messages SIG, KEY and NXT Scaleable digital signature protection of data CERT Holder of certificate (PGP, X.509) data Secure Dynamic Update Uses message security to identify the requestor

5 Slide 5 P R O T E C T I N G Y O U R P R I V A C Y 5lewis@tislabs.com Some basics Technology Status Terminology How it fits together

6 Slide 6 P R O T E C T I N G Y O U R P R I V A C Y 6lewis@tislabs.com Protocol and Software Status Protocol specified in a collection of IETF RFCs First of three levels of standardization Rewrites of major documents to happen ISC's BIND software implements most of DNSSEC Still in "bleeding edge" state Microsoft and Lucent are implementing parts Software hasn't been distributed yet

7 Slide 7 P R O T E C T I N G Y O U R P R I V A C Y 7lewis@tislabs.com IETF Working Groups Work is progressing to refine protocol IETF WG on DNS Extensions (DNSEXT) Much work remains to progress to "Full Standard" Internet Drafts document the work in progress Operational experience is limited but growing IETF WG on DNS Operations (DNSOP) Many DNSSEC workshops have been held How to operate and policy questions abound

8 Slide 8 P R O T E C T I N G Y O U R P R I V A C Y 8lewis@tislabs.com Deployment Plans A major push is in Europe Three ccTLD's plan to have signed zones as soon as possible CENTR has a DNSSEC WG in action Root Servers Looking into adoption, sooner rather than later Recommended the adoption of TSIG Other recent activity - ENUM, Asian TLD's

9 Slide 9 P R O T E C T I N G Y O U R P R I V A C Y 9lewis@tislabs.com Some Terminology Other Name Server Secondary Resolver (Stub) Root Name Server Authoritative Name Servers Primary Recursive Name Server (Cache & Resolver)

10 Slide 10 P R O T E C T I N G Y O U R P R I V A C Y 10lewis@tislabs.com Resource Record "Sets" myname.xy. 14400 IN A 123.123.123.123 myname.xy. 14400 IN A 203.123.245.123 In old DNS Records with common owner, type, class are treated together, but still are singular entities For DNSSEC The RR set is formalized No longer are records singular, always treated as a set *So, I will be talking about sets of data

11 Slide 11 P R O T E C T I N G Y O U R P R I V A C Y 11lewis@tislabs.com Zones vs. Servers Zone is an administrative cut of the name space Name server is a host dispensing information Relationship A zone is served by name servers (1 or more) A name server may serve many zones (0 or more) Authoritative servers have the original zone data Primary master server has the data in a source text file *SIG/KEY secures on the basis of zones *Query/Response secures between a resolver and a server Or, in the case of zone transfers, between two servers

12 Slide 12 P R O T E C T I N G Y O U R P R I V A C Y 12lewis@tislabs.com Cryptography Symmetric keys (aka shared secret) One key, encrypts and decrypts/signs and verifies Problem: distributing the secret secretly, storing the secret secretly Asymmetric keys (aka public key) Pair of keys, one encrypts/signs, other decrypts/verifies Problem: slower than symmetric Optimization Use asymmetric keys to agree upon a symmetric key Other issues: patents and export control

13 Slide 13 P R O T E C T I N G Y O U R P R I V A C Y 13lewis@tislabs.com How this fits together root server top level domain KEY RR, SIG RR, NXT RR Host (other) authoritative name server recursive/ primary Managing Host TSIG secondary TSIG

14 Slide 14 P R O T E C T I N G Y O U R P R I V A C Y 14lewis@tislabs.com Easy vs. Complicated Features The components of DNSSEC have been developed somewhat independent of each other Through workshops it is apparent that some parts of DNSSEC are ready for use, others are harder to understand, some need more work For the first time, I'll be organizing this tutorial by "ready to use" instead of chronological development

15 Slide 15 P R O T E C T I N G Y O U R P R I V A C Y 15lewis@tislabs.com Easy Features TSIG - From "Transaction Signature" Uses "keyed hashes" to protect messages Messages are time stamped, but clock synchronization is not part of the process Basic role in DNS - to identify a user or host to another host CERT records Basic "holder" for certificates

16 Slide 16 P R O T E C T I N G Y O U R P R I V A C Y 16lewis@tislabs.com TSIG in the Message DNS Header Question Answer Authority Additional & TSIG data DNS Original Message Format

17 Slide 17 P R O T E C T I N G Y O U R P R I V A C Y 17lewis@tislabs.com What Does TSIG Do? TSIG is a keyed-hash computed over the entire message Provides proof that an arriving message has not been changed in transit That the message was sent recently (not replayed) And that it was sent from someone who shares the secret The querier selects a secret, sends the name of the secret and hash in message but not the secret itself

18 Slide 18 P R O T E C T I N G Y O U R P R I V A C Y 18lewis@tislabs.com TSIG in the named.conf file key "test" { algorithm hmac-md5; secret "qarW1YvJ3OO+f/ToV6ORGw=="; }; This is a BIND-specific topic key statements must appear before use, except for rndc

19 Slide 19 P R O T E C T I N G Y O U R P R I V A C Y 19lewis@tislabs.com Making Use of TSIG Remote Name server Daemon Controller Zone transfers Dynamic Updates Queries and Responses

20 Slide 20 P R O T E C T I N G Y O U R P R I V A C Y 20lewis@tislabs.com rndc Name server permits this when a "controls" section is in the.conf file Note, key is defined after controls statement controls { inet 127.0.0.1 allow {127.0.0.1;} keys { rndc_key;}; }; key rndc_key { algorithm HMAC-MD5; secret "QaRw1Yvj300+f/ToV6ORGw=="; };

21 Slide 21 P R O T E C T I N G Y O U R P R I V A C Y 21lewis@tislabs.com rndc client configuration client program uses /etc/rndc.conf or command line arguments key rndc_key { algorithm "HMAC-MD5"; secret "QaRw1Yvj300+f/ToV6ORGw=="; }; options { default-server "127.0.0.1"; default-key rndc-key; }; server "127.0.0.1" { key rndc_key; };

22 Slide 22 P R O T E C T I N G Y O U R P R I V A C Y 22lewis@tislabs.com Zone transfers Primary server 10.33.40.46 key "test" { algorithm hmac-md5; secret "ThePlaceToBe"; }; server 10.33.40.35 { keys {test;}; }; Secondary server 10.33.40.35 key "test" { algorithm hmac-md5; secret "ThePlaceToBe"; }; server 10.33.40.46 { keys {test;}; };

23 Slide 23 P R O T E C T I N G Y O U R P R I V A C Y 23lewis@tislabs.com Dynamic Update An advanced feature, not yet complete Securing it relies on TSIG Two forms of security But there is still an issue

24 Slide 24 P R O T E C T I N G Y O U R P R I V A C Y 24lewis@tislabs.com Securing Dynamic Update Marking a zone as dynamic is done by specifying how the updates are secured Access control based on IP address Weak, I'll ignore this Coarse-grained access control A secret enables changes to any part of the zone Fine-grained access control A secret can make restricted changes

25 Slide 25 P R O T E C T I N G Y O U R P R I V A C Y 25lewis@tislabs.com allow-update Provides coarse control key "keyto.39.171.199" { algorithm hmac-md5; secret "ThePlaceToBe"; }; zone "39.171.199.in-addr.arpa." { type master; file "reversemap.zone"; allow-update {key keyto.39.171.199;}; }; This says that any update signed by the key called "keyto.39.171.199" can update any part of the zone

26 Slide 26 P R O T E C T I N G Y O U R P R I V A C Y 26lewis@tislabs.com update-policy Allows fine-grained control key key1. {...}; key key2. {...}; zone "39.171.199.in-addr.arpa." { type master; file "reverse-map.zone"; update-policy { grant key1. name 1.39.171.199.in-addr.arpa. PTR; grant key2. name 2.39.171.199.in-addr.arpa. PTR; }; This permits the specified keys to change just parts of the zone

27 Slide 27 P R O T E C T I N G Y O U R P R I V A C Y 27lewis@tislabs.com Remaining Issue Dynamic Update zones that are signed suffer from "signature rot" Haven't covered signatures yet Suffice it to say, this issue is being worked upon Time permitting, this will be covered later in presentation Dynamic Update with DNSSEC is almost ready for prime time

28 Slide 28 P R O T E C T I N G Y O U R P R I V A C Y 28lewis@tislabs.com Other queries and responses Using TSIG for all queries and responses is not ready for prime time One issue is storing a secret on a multi-user machine There isn't an easy way to configure a secret for a resolver There also needs to be coordination with DHCP as TSIG secrets are server specific But, TSIG can be used with dig, which is useful for testing configurations

29 Slide 29 P R O T E C T I N G Y O U R P R I V A C Y 29lewis@tislabs.com Supplying a secret to dig dig can be passed a secret Via the command line, meaning the secret is momentarily vulnerable (via the ps command) For testing, this is acceptable dig option is " -y name:secret " dig @0 1.39.171.199.in-addr.arpa. PTR -y \ test:qarW1YvJ3OO+f/ToV6ORGw== For testing, mnemonic secrets are advantageous, or a working cut-n-paste.

30 Slide 30 P R O T E C T I N G Y O U R P R I V A C Y 30lewis@tislabs.com One last comment on TSIG When a query arrives with a TSIG The responder must know the secret to verify the message The responder will attach a TSIG to the response using the same secret "Server" statements are used by name servers to know when to use a secret on "outgoing" messages AXFR query, NOTIFY, lookups "Server" statements are not needed for stub resolvers

31 Slide 31 P R O T E C T I N G Y O U R P R I V A C Y 31lewis@tislabs.com What about SIG(0) and TKEY? SIG(0) is a public-key alternative to TSIG and predates TSIG I don't know of anyone using it Instead of a secret value, a private key is needed, which is still an issue on a multiuser machine TKEY is a mechanism to negotiate a TSIG on the fly 4 modes, two are not used and not mentioned SIG(0) initiated GSSAPI, used by Microsoft and Lucent

32 Slide 32 P R O T E C T I N G Y O U R P R I V A C Y 32lewis@tislabs.com CERT Records Now for a completely different, but also straightforward, topic The CERT RR is a container for certificates X.509 PGP Others The certificate can be standalone, like a TXT record for a comment The certificate can reference a key in a KEY RR

33 Slide 33 P R O T E C T I N G Y O U R P R I V A C Y 33lewis@tislabs.com CERT RR Syntax The first RDATA element indicates the kind of certificate The second element points to a KEY RR The third element indicates the KEY algorithm The final element is the binary certificate CERT 3 10000 3 0123456789abcd... Key Footprint indicates a related KEY RR Algorithm Certificate encoded in base64 (when printed) Cert Type indicates PGP, X.509, or...

34 Slide 34 P R O T E C T I N G Y O U R P R I V A C Y 34lewis@tislabs.com Limitations on CERT This is not a PKI DNS is used to make a PKI's certificates available Relying on DNS signatures to secure the certificate chain is risky Instead, rely on the certificate's built in chain of trust With this, it is reasonable to use the CERT record even in unsigned zones What's a "signed zone" Answer: a good segue...

35 Slide 35 P R O T E C T I N G Y O U R P R I V A C Y 35lewis@tislabs.com The Complicated Features The SIG, KEY, and NXT records How they impact zone files and queries Tools available to manipulate the records

36 Slide 36 P R O T E C T I N G Y O U R P R I V A C Y 36lewis@tislabs.com The SIG record The SIG record holds a digital signature This record is only intended for use within DNS It is not a general purpose signature holder Data held in the SIG RR (Highlights) Validity period The identity of the verifying key The signature

37 Slide 37 P R O T E C T I N G Y O U R P R I V A C Y 37lewis@tislabs.com SIG RR syntax SIG SOA 1 4 600 20010427183511 20010327183511 2694 39.171.199.in-addr.arpa (sig) Algorithm Original TTL Allows answers to come from cache Expiration Start Time Signer Key Footprint and Domain Name Indicates who signed the data Signature Type Covered the set of data covered Label count helps when wildcards are used

38 Slide 38 P R O T E C T I N G Y O U R P R I V A C Y 38lewis@tislabs.com The KEY record The KEY record is a general purpose holder of public keys E.g., an RSA key pair, a DSA key pair Not a TSIG nor other shared secret! The KEY may or may not be DNS specific unlike the SIG RR

39 Slide 39 P R O T E C T I N G Y O U R P R I V A C Y 39lewis@tislabs.com KEY RR Syntax is short hand for owner-ttl-class KEY 0x4101 3 1 AQOp5t...d68o6r Flags Indicates the way a key is to be used Protocol Indicates the intended protocols for the key Algorithm Indicates the cryptographic method Key bits Base64 encoding of the signature

40 Slide 40 P R O T E C T I N G Y O U R P R I V A C Y 40lewis@tislabs.com The NXT record The NXT record is used to deny existence of data With authentication (proof) Kind of like signing the NXDOMAIN response There is one nit against the NXT record The method it uses exposes the entire zone's contents to a determined querier There is an option under consideration

41 Slide 41 P R O T E C T I N G Y O U R P R I V A C Y 41lewis@tislabs.com NXT RR Syntax (owner is 39.171.199.in-addr.arpa.) NXT 1.39.171.199.in-addr.arpa. NS SOA TXT SIG KEY NXT Next name No name fits between 39.171.199.in-addr.arpa. and 1.39.171.199.in-addr.arpa. Type Bit Map sets at the owner, other sets absent

42 Slide 42 P R O T E C T I N G Y O U R P R I V A C Y 42lewis@tislabs.com An unsigned zone $ORIGIN myhome.zone4.sec.test. @ 450 IN SOA ns1.myhome.zone4.sec.test. root.ns1.myhome... ( 100001 21600 3600 604800 300 ) 450 IN NS ns1.myhome.zone4.sec.test. 450 IN NS ns2.myhome.zone4.sec.test. dynup 450 IN NS ns1.myhome.zone4.sec.test. 450 IN NS ns2.myhome.zone4.sec.test. host1 450 IN A 10.53.53.101 host2 450 IN A 10.53.53.102... and more... Not a reverse map zone, sorry

43 Slide 43 P R O T E C T I N G Y O U R P R I V A C Y 43lewis@tislabs.com The same zone signed (part 1) ; File written on Thu Feb 15 16:11:38 2001 ; dnssec_signzone version 9.1.0-modified $ORIGIN myhome.zone4.sec.test. @450IN SOAns1.myhome.zone4.sec.test. root.ns1.myhome.zone4.sec.test. ( 100001 21600 3600 604800 300 ) 450SIGSOA 1 4 450 20010317211138 20010215211138 ( 7721 myhome.zone4.sec.test. LOUkhBghJB+516jUvqmS7z19DNazUKRxmz JaQAR3lPmm7sW6Hu0RElr39uRxKkySarfM XD/uIZijbsZfwYcL+Q== ) 450NSns1.myhome.zone4.sec.test. 450NSns2.myhome.zone4.sec.test. 450SIGNS 1 4 450 20010317211138 20010215211138 7721 ( myhome.zone4.sec.test. zYFJ+on0oR/NB9OEsPe...l6QQCrgSf+q PDwPMa0qTQuwQw== ) 450KEY256 3 1 AQPPXEoG9mWfEG0jEk/TR...V3q5IA8Hinn ) ; key id = 7721 450SIGKEY 1 4 450 20010416204257 20010215204257 7721 ( myhome.zone4.sec.test. G+t8TThil757pp9CVZR...mJvzC/AVmSdzQQ== ) 450SIGKEY 1 4 450 20010416204257 20010215204257 31512 ( zone4.sec.test. LSQn44NYAeeLSUWDms...TJQyq6NxTfsjsiTdQ31 +doQ8fUASqvMQQ== )...continues on next slide...

44 Slide 44 P R O T E C T I N G Y O U R P R I V A C Y 44lewis@tislabs.com Part 2 450NXTdynup.myhome.zone4.sec.test. NS SOA SIG KEY NXT 450SIGNXT 1 4 450 20010317211138 20010215211138 ( 7721 myhome.zone4.sec.test. Mdz5r8ouNnj+XYFWo4Qo0R/eCtzZeq8KTjKCG428v PnxMwo+Uq6Xd8x3hmAU1QWVBikRoJG0xgoXnzmdcOCMgg== ) dynup450IN NSns1.myhome.zone4.sec.test. 450IN NSns2.myhome.zone4.sec.test. 450NXThost1.myhome.zone4.sec.test. NS SIG NXT 450SIGNXT 1 5 450 20010317211138 ( 20010215211138 7721 myhome.zone4.sec.test. zzBFfBZjguc9XVKPCsuzlkMc04g1uz6u+JSP f4yF7dCxzJjnI7akJIeaTKsC5j+iQ6i4zkSg Uh7238SWzgO+1w== ) host1450IN A10.53.53.101 450SIGA 1 5 450 20010317211138 ( 20010215211138 7721 myhome.zone4.sec.test. GiBTjzikKZO5CN2lUJuHUf1thgQfw3V9axT8 KnDrhGZM/u6h4lJx7dxA6NILjMQ9hihZYjWB LAKcfDjdF16krA== ) 450NXThost2.myhome.zone4.sec.test. A SIG NXT 450SIGNXT 1 5 450 20010317211138 ( 20010215211138 7721 myhome.zone4.sec.test. Vlfv/rzgWzfc+S0+IEckT5QMRjClpqJLhN0Z MA4UBr+ANujK0ghJdvifdSysAC60FH8Ex33f vuC+jrKum/A7yg== )....and there's still more to the zone, not shown

45 Slide 45 P R O T E C T I N G Y O U R P R I V A C Y 45lewis@tislabs.com Chain of trust ARPA. EDU. UMBC.EDU. IN-ADDR.ARPA.. (root) key 1 key 2 sig 2 sig 1 key 1 - preconfigured in all resolvers key 4 sig by 2 key 3 sig by 2 key 6 sig by 4 in-addr.arpa. in soa a.root-servers.net. noc.netsol.com. ( 2001032115 1800 900 604800 86400), signed by 6 key 5 sig by 3

46 Slide 46 P R O T E C T I N G Y O U R P R I V A C Y 46lewis@tislabs.com Queries 39.171.199.in-addr.arpa. "." "arpa." "in-addr.arpa." Query: 1.39.171.199.in-addr.arpa. PTR "." refers to arpa server "in-addr.arpa." refers to 39.171.199 server Answer contains (all or some of) PTR for 1.39.171.199.in-addr.arpa SIG by 39.171.199.in-addr.arpa. KEY of 39.171.199.in-addr.arpa. SIG of that KEY by in-addr.arpa. Query for KEY of in-addr.arpa. KEY of in-addr.arpa. and SIG by arpa. KEY Query for KEY of arpa. KEY of arpa. and SIG by root key Now, can verify chain knows root key

47 Slide 47 P R O T E C T I N G Y O U R P R I V A C Y 47lewis@tislabs.com Delegations The biggest issue facing DNSSEC is the delegation interaction E.g., how will.edu sign umbc.edu.'s key? How is key 5 signed by key 3? (Previous slide) umbc.edu generates a key, ships it to edu., the signature is returned How will each side trust the other? What happens when the.edu key changes?

48 Slide 48 P R O T E C T I N G Y O U R P R I V A C Y 48lewis@tislabs.com BIND's DNSSEC tools dnssec-keygen Generates public/private keys and shared secrets dnssec-signzone Signs master / zonefile dnssec-makekeyset Assembles and self-signs keys for validation dnssec-signkey Signs a key set (e.g., by parent)

49 Slide 49 P R O T E C T I N G Y O U R P R I V A C Y 49lewis@tislabs.com Using the tools Parent Child dnssec-keygendnssec-makekeyset dnssec-signkey dnssec-signzone put into master file signed master file

50 Slide 50 P R O T E C T I N G Y O U R P R I V A C Y 50lewis@tislabs.com Wrap-up Some parts of DNSSEC are ready for use Generally TSIG-based protections Some features of DNS are not mature Dynamic Update and DNSSEC Some features of DNSSEC are still progressing Digital Signatures and Delegations Remaining Issues & Work Whether the NXT is replaced or not How DNSSEC (keys) will impact operations Writing client software to make use of features

51 Slide 51 P R O T E C T I N G Y O U R P R I V A C Y 51lewis@tislabs.com Reference Material IETF Sites (http://www.ietf.org/...) DNSEXT: html.charters/dnsext-charter.html DNSOP: html.charters/dnsop-charter.html State of DNS: internet-drafts/draft-lewis-state-of-dnssec-01.txt DNSSEC Experiments http://www.sigz.net https://keys.cairn.net http://secnl.nlnetlabs.nl/ ISC BIND 9 http://www.isc.org/products/BIND/

52 Slide 52 P R O T E C T I N G Y O U R P R I V A C Y 52lewis@tislabs.com RFC's RFC's defining DNSSEC (available from IETF) 2535 - Current base definition 2536,2537 - Define key and signature processing 2538 - CERT record 2939 - Diffie Hellman keys 2845 - TSIG 2930 - TKEY 2931 - SIG(0) 3007 - Secure Dynamic Update (ignore 2137) 3008 - Signing Authorization Model 3090 - Clarifications

Download ppt "Introduction to DNSSEC ARIN Tutorial April 1, 2001 Edward Lewis"

Similar presentations

Numbers Treasure Hunt Following each question, click on the answer. If correct, the next page will load with a graphic first – these can be used to check.

Numbers Treasure Hunt Following each question, click on the answer. If correct, the next page will load with a graphic first – these can be used to check.
Variations of the Turing Machine

Variations of the Turing Machine
3rd Annual Plex/2E Worldwide Users Conference 13A Batch Processing in 2E Jeffrey A. Welsh, STAR BASE Consulting, Inc. September 20, 2007.

3rd Annual Plex/2E Worldwide Users Conference 13A Batch Processing in 2E Jeffrey A. Welsh, STAR BASE Consulting, Inc. September 20, 2007.
AP STUDY SESSION 2.

AP STUDY SESSION 2.
1

1
ISA 662 SSL Prof. Ravi Sandhu. 2 © Ravi Sandhu SECURE SOCKETS LAYER (SSL) layered on top of TCP SSL versions 1.0, 2.0, 3.0, 3.1 Netscape protocol later.

ISA 662 SSL Prof. Ravi Sandhu. 2 © Ravi Sandhu SECURE SOCKETS LAYER (SSL) layered on top of TCP SSL versions 1.0, 2.0, 3.0, 3.1 Netscape protocol later.
Copyright © 2003 Pearson Education, Inc. Slide 1 Computer Systems Organization & Architecture Chapters 8-12 John D. Carpinelli.

Copyright © 2003 Pearson Education, Inc. Slide 1 Computer Systems Organization & Architecture Chapters 8-12 John D. Carpinelli.
Processes and Operating Systems

Processes and Operating Systems
Manuscript Central Training Author Center Module 2.

Manuscript Central Training Author Center Module 2.
1 Hyades Command Routing Message flow and data translation.

1 Hyades Command Routing Message flow and data translation.
David Burdett May 11, 2004 Package Binding for WS CDL.

David Burdett May 11, 2004 Package Binding for WS CDL.
Prepared by: Workforce Enterprise Services For: The Illinois Department of Commerce and Economic Opportunity Bureau of Workforce Development ENTRY OF EMPLOYER.

Prepared by: Workforce Enterprise Services For: The Illinois Department of Commerce and Economic Opportunity Bureau of Workforce Development ENTRY OF EMPLOYER.
Local Customization Chapter 2. Local Customization 2-2 Objectives Customization Considerations Types of Data Elements Location for Locally Defined Data.

Local Customization Chapter 2. Local Customization 2-2 Objectives Customization Considerations Types of Data Elements Location for Locally Defined Data.
CALENDAR.

CALENDAR.
1 10 pt 15 pt 20 pt 25 pt 5 pt 10 pt 15 pt 20 pt 25 pt 5 pt 10 pt 15 pt 20 pt 25 pt 5 pt 10 pt 15 pt 20 pt 25 pt 5 pt 10 pt 15 pt 20 pt 25 pt 5 pt BlendsDigraphsShort.

1 10 pt 15 pt 20 pt 25 pt 5 pt 10 pt 15 pt 20 pt 25 pt 5 pt 10 pt 15 pt 20 pt 25 pt 5 pt 10 pt 15 pt 20 pt 25 pt 5 pt 10 pt 15 pt 20 pt 25 pt 5 pt BlendsDigraphsShort.
1 Pretty Good Privacy (PGP) Security for Electronic Email.

1 Pretty Good Privacy (PGP) Security for Electronic .
PUBLIC KEY CRYPTOSYSTEMS Symmetric Cryptosystems 6/05/2014 | pag. 2.

PUBLIC KEY CRYPTOSYSTEMS Symmetric Cryptosystems 6/05/2014 | pag. 2.
1 Click here to End Presentation Software: Installation and Updates Internet Download CD release NACIS Updates.

1 Click here to End Presentation Software: Installation and Updates Internet Download CD release NACIS Updates.
Photo Slideshow Instructions (delete before presenting or this page will show when slideshow loops) 1.Set PowerPoint to work in Outline. View/Normal click.

Photo Slideshow Instructions (delete before presenting or this page will show when slideshow loops) 1.Set PowerPoint to work in Outline. View/Normal click.
© Tally Solutions Pvt. Ltd. All Rights Reserved Shoper 9 License Management December 09.

© Tally Solutions Pvt. Ltd. All Rights Reserved Shoper 9 License Management December 09.

Similar presentations

Ads by Google