Presentation is loading. Please wait.

Presentation is loading. Please wait.

Public Key Infrastructures Evolving Approaches. 30-December-1998Copyright(c) Yale University 19981 Brief Sordid History n X.500 Directory Authentication.

Published byBenjamin Eaton Modified over 8 years ago

Similar presentations

Presentation on theme: "Public Key Infrastructures Evolving Approaches. 30-December-1998Copyright(c) Yale University 19981 Brief Sordid History n X.500 Directory Authentication."— Presentation transcript:

1 Public Key Infrastructures Evolving Approaches

2 30-December-1998Copyright(c) Yale University 19981 Brief Sordid History n X.500 Directory Authentication –Beginnings of the X.509 Standard n PEM - Privacy Enhanced Mail –A Vote of Confidence n PGP - A Radical Departure n Netscape SSL - First “real” Application –Make-do Approach

3 30-December-1998Copyright(c) Yale University 19982 We Need a PKI! (so what is it exactly?) n An Open Purchase Order to Verisign? n A Software Package Allowing for the Creation of Certificates? n A Detailed Legal Statement Indemnifying the Institution Against Lawsuits?

4 30-December-1998Copyright(c) Yale University 19983 Enter PKIX Addressing the Sum Total Angst of the Community

5 30-December-1998Copyright(c) Yale University 19984 Infrastructure Trends n Increased focus on the Local over the Global –Support for more comprehensive local namespace –Cross certification support n Certificate Policy No Longer Tied to CA “ancestry”

6 30-December-1998Copyright(c) Yale University 19985 Subject Alternate Name n Provides tagged local namespace –Alternative to overloading DN fields n Allows for more common “Internet centric” naming n Null DN allowed for non-CA certificates

7 30-December-1998Copyright(c) Yale University 19986 Certificate Policies n Provides locally interpreted OID n Optional qualifiers provide reference to CPS statement & summary text n PolicyMappings extend policies to cross certified trust trees

Download ppt "Public Key Infrastructures Evolving Approaches. 30-December-1998Copyright(c) Yale University 19981 Brief Sordid History n X.500 Directory Authentication."

Similar presentations

Introduction of Grid Security

Introduction of Grid Security
PKI Strategy PKI Requirements Standard –Based on e-MARC or other Certificate Policy Statements –Specify key aspects that must be met by CA Cert format.

PKI Strategy PKI Requirements Standard –Based on e-MARC or other Certificate Policy Statements –Specify key aspects that must be met by CA Cert format.
Internet Protocol Security (IP Sec)

Internet Protocol Security (IP Sec)
1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.

1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E IEPG March 2000 APNIC Certificate Authority Status Report.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E IEPG March 2000 APNIC Certificate Authority Status Report.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Open Policy Meeting SIG: Whois Database October 2000 APNIC Certificate Authority.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Open Policy Meeting SIG: Whois Database October 2000 APNIC Certificate Authority.
PKI: A High Level View from the Trenches Ken Klingenstein, Project Director, Internet2 Middleware Initiative Chief Technologist, University of Colorado.

PKI: A High Level View from the Trenches Ken Klingenstein, Project Director, Internet2 Middleware Initiative Chief Technologist, University of Colorado.
Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.

Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.
Cryptography Chapter 7 Part 4 Pages 833 to 874. PKI Public Key Infrastructure Framework for Public Key Cryptography and for Secret key exchange.

Cryptography Chapter 7 Part 4 Pages 833 to 874. PKI Public Key Infrastructure Framework for Public Key Cryptography and for Secret key exchange.
HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.

HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.
AAI and universities Roles and functions. The Smart Card Architect Objectives zBuild a secure Authentication and Authorization Infrastructure between.

AAI and universities Roles and functions. The Smart Card Architect Objectives zBuild a secure Authentication and Authorization Infrastructure between.
Password?. Project CLASP: Common Login and Access rights across Services Plan

Password?. Project CLASP: Common Login and Access rights across Services Plan
Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.

Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.
Slide 1 Many slides from Vitaly Shmatikov, UT Austin Public-Key Infrastructure CNS F2006.

Slide 1 Many slides from Vitaly Shmatikov, UT Austin Public-Key Infrastructure CNS F2006.
CS470, A.SelcukE-mail Security1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.Selcuk Security1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
Principles of Information Security, 2nd edition1 Cryptography.

Principles of Information Security, 2nd edition1 Cryptography.
NRENs supporting Grids using current Grid technology TERENA NREN-GRID Workshop Amsterdam 2005-10-17 Milan Sova CESNET.

NRENs supporting Grids using current Grid technology TERENA NREN-GRID Workshop Amsterdam Milan Sova CESNET.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E 36th RIPE Meeting Budapest 2000 APNIC Certificate Authority Status Report.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E 36th RIPE Meeting Budapest 2000 APNIC Certificate Authority Status Report.
CMSC 414 Computer and Network Security Lecture 20 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 20 Jonathan Katz.

Similar presentations

Ads by Google