Professional Documents
Culture Documents
Public Key Infrastructure (X509 PKI) : Marco Casassa Mont
Public Key Infrastructure (X509 PKI) : Marco Casassa Mont
Public Key Infrastructure (X509 PKI) : Marco Casassa Mont
HP Laboratories, Bristol, UK
Outline
Basic Problem of Confidence and Trust
Background: Cryptography, Digital Signature, Digital Certificates (X509) Public Key Infrastructure (PKI) (X509) PKI: Trust and Legal Issues
HP Laboratories, Bristol, UK
Basic Problem
Intranet Extranet Internet
Bob
Alice
HP Laboratories, Bristol, UK
Bob
Alice
HP Laboratories, Bristol, UK
HP Laboratories, Bristol, UK
It is the science of making the cost of acquiring or altering data greater than the potential value gained
Cryptosystem
It is a system that provides techniques for mangling a message into an apparently intelligible form and than recovering it from the mangled form
Plaintext Hello World Encryption Key Ciphertext &$*(!273 Decryption Key Plaintext Hello World
HP Laboratories, Bristol, UK
Cryptographic Algorithms
All cryptosystems are based only on three Cryptographic Algorithms: MESSAGE DIGEST (MD2-4-5, SHA, SHA-1, )
Maps variable length plaintext into fixed length ciphertext No key usage, computationally infeasible to recover the plaintext
HP Laboratories, Bristol, UK
Pros
Private Key
Private Key
Cons
The same secret key must be shared by all the entities involved in the data exchange High risk
HP Laboratories, Bristol, UK
Pros
Private key is only known by the owner: less risk The algorithm ensures Integrity and Confidentiality by encrypting with the Receivers Public key
Bob
Plaintext Encryption Ciphertext
Alice
Decryption Plaintext
Pros
The algorithm ensures Non-Repudiation by encrypting with the Senders Private key
Bob
Alice
Plaintext
Encryption
Ciphertext
Decryption
Plaintext
Cons
Algorithms are 100 1000 times slower than secret key ones
How are Public keys made available to the other people? There is still a problem of Authentication!!!
Who ensures that the owner of a key pair is really the person whose real life name is Alice?
Intranet Extranet Internet
Bob
Public Key Infrastructure (PKI)
Alice
Digital Signature
HP Laboratories, Bristol, UK
Digital Signature
A Digital Signature is a data item that vouches the origin and the integrity of a Message
The originator of a message uses a signing key (Private Key) to sign the
message and send the message and its digital signature to a recipient The recipient uses a verification key (Public Key) to verify the origin of the message and that it has not been tampered with while in transit
Intranet Extranet Internet
Bob
Public Key Infrastructure (PKI)
Alice
HP Laboratories, Bristol, UK
Digital Signature
Message Message
Digest Algorithm
Digest Algorithm
Hash Function
Public Key
Private Key
Encryption
Signature
Signer
Channel
Public Key Infrastructure (PKI)
Receiver
HP Laboratories, Bristol, UK
Digital Signature
There is still a problem linked to the Real Identity of the Signer.
Why should I trust what the Sender claims to be?
Digital Certificate
HP Laboratories, Bristol, UK
Digital Certificate
A Digital Certificate is a binding between an entitys
Public Key and one or more Attributes relating its Identity.
The entity can be a Person, an Hardware Component, a Service, etc.
A Digital Certificate is issued (and signed) by someone - Usually the issuer is a Trusted Third Party A self-signed certificate usually is not very trustworthy
Public Key Infrastructure (PKI)
HP Laboratories, Bristol, UK
Digital Certificate
CERTIFICATE
Issuer
Subject Subject Public Key
HP Laboratories, Bristol, UK
Digital Certificate
Problems
HP Laboratories, Bristol, UK
HP Laboratories, Bristol, UK
HP Laboratories, Bristol, UK
Focus on:
X509 PKI X509 Digital Certificates Standards defined by IETF, PKIX WG: http://www.ietf.org/ even if X509 is not the only approach (e.g. SPKI)
Public Key Infrastructure (PKI)
HP Laboratories, Bristol, UK
Provider Side
Consumer Side
HP Laboratories, Bristol, UK
Certification Entity
Application Service
Signed Certificate
Internet
RA
Certs, CRLs Directory
Remote Person
Local Person
HP Laboratories, Bristol, UK
HP Laboratories, Bristol, UK
Revocation
Public Key Infrastructure (PKI)
HP Laboratories, Bristol, UK
LDAP directories
Public Key Infrastructure (PKI)
HP Laboratories, Bristol, UK
HP Laboratories, Bristol, UK
HP Laboratories, Bristol, UK
HP Laboratories, Bristol, UK
User
Directory
Certificate IDs to be checked
CA
CRL
CRL
User
Answer about Certificate States
OCSP Server
Download CRL
CA
Directory
OCSP
HP Laboratories, Bristol, UK
Communication Facilities
Public Key Infrastructure (PKI)
HP Laboratories, Bristol, UK
HP Laboratories, Bristol, UK
HP Laboratories, Bristol, UK
HP Laboratories, Bristol, UK
HP Laboratories, Bristol, UK
CA Technology Evolution
CA CA RA CA CA CA CA
Internet
Directory Services
CA CA
RA
RA
RA
Internet
RA
RA
LRA
LRA
HP Laboratories, Bristol, UK
Each entity has its own certificate (and may have more than one). The root CAs certificate is self signed and each sub-CA is signed by its parent CA. Each CA may also issue CRLs. In particular the lowest level CAs issue CRLs frequently.
End Entities
HP Laboratories, Bristol, UK
Alice trusts the root CA Bob sends a message to Alice Alice needs Bobs certificate, the certificate of the CA that signed Bobs certificate, and so on up to the root CAs self signed certificate. Alice also needs each CRL for each CA.
*
Alice Bob
Only then can Alice verify that Bobs certificate is valid and trusted and so verify the Bobs signature.
HP Laboratories, Bristol, UK
HP Laboratories, Bristol, UK
X509 PKI Approach to Trust : Problems Things are getting more and more
Trusted Root
*
Public Key Infrastructure (PKI)
HP Laboratories, Bristol, UK
Certificate Policy
And
HP Laboratories, Bristol, UK
A CP is usually publicly exposed by CAs, for example on a Web Site (VeriSign, etc.)
Public Key Infrastructure (PKI)
HP Laboratories, Bristol, UK
CP
IDENTIFICATION & AUTHENTICATION OPERATIONAL REQUIREMENTS
HP Laboratories, Bristol, UK
Certificate Acceptance
HP Laboratories, Bristol, UK
HP Laboratories, Bristol, UK
CPS
CERTIFICATE & CRL PROFILES TECHNICAL SECURITY CONTROLS PHYSICAL, PROCEDURAL & PERSONNEL
OPERATIONAL REQUIREMENTS
HP Laboratories, Bristol, UK
HP Laboratories, Bristol, UK