Beruflich Dokumente
Kultur Dokumente
Lecture 6
Digital Certificates
PUBLIC-KEY CERTIFICATES
reliabledistribution of public-keys
public-key encryption
¾ sender needs public key of receiver
public-key digital signatures
¾ receiver needs public key of sender
public-key key agreement
¾ both need each other’s public keys
user
X.509 X.509
attribute identity
certificate certificate
attribute public-key
SPKI
certificate
© Ravi Sandhu 2000-2004 3
X.509 CERTIFICATE
VERSION
SERIAL NUMBER
SIGNATURE ALGORITHM
ISSUER
VALIDITY
SUBJECT
SUBJECT PUBLIC KEY INFO
SIGNATURE
© Ravi Sandhu 2000-2004 4
X.509 CERTIFICATE
0
1234567891011121314
RSA+MD5, 512
C=US, S=VA, O=GMU, OU=ISE
9/9/99-1/1/1
C=US, S=VA, O=GMU, OU=ISSE, CN=Ravi Sandhu
RSA, 1024, xxxxxxxxxxxxxxxxxxxxxxxxx
SIGNATURE
© Ravi Sandhu 2000-2004 5
CERTIFICATE TRUST
Subjects
© Ravi Sandhu 2000-2004 Sandhu Sandhu 7
CRL FORMAT
SIGNATURE ALGORITHM
ISSUER
LAST UPDATE
NEXT UPDATE
REVOKED CERTIFICATES
SIGNATURE
SERIAL NUMBER
REVOCATION DATE
© Ravi Sandhu 2000-2004 8
PGP BOTTOM UP
TRUST MODEL
X.509 CERTIFICATES
X.509v1
¾ very basic
X.509v2
¾ adds unique identifiers to prevent
against reuse of X.500 names
X.509v3
¾ adds many extensions
¾ can be further extended
SIGNATURE KEYS
X.509 INNOVATIONS
X.509v3 EXTENSIONS
CRITICALITY
X.509v3 NAMES
CERTIFICATION PATH
CONSTRAINTS
Basic Constraints
¾ can or cannot act as CA
¾ if can act as CA limit on certification path
• limit=1 means cannot certify other CAs
Name Constraints
¾ limits names of subjects that this CA can issue
certificates for
Policy Constraints
¾ concerned with CA policies
CERTIFICATE REVOCATION
LISTS
CRL distribution
¾ pull
method
¾ push method
DMS example
¾ pull method with push for compromised
key list (CKL) which is broadcast via
secure email, single CKL for entire
system
REVOCATION TIME-LINE
Issue Of Revocation Issue Of
CRL 1 Request CRL 2
Compromise Revocation
Event Time
© Ravi Sandhu 2000-2004 26
OCSP
ON-LINE CERTIFICATE STATUS PROTOCOL
SHORT-LIVED
CERTIFICATES
General Extensions
CRL distribution points
Delta-CRLs
Indirect-CRLs
Certificate Suspension
GENERAL EXTENSIONS
Reason Code
¾ Key Compromise
¾ CA Compromise
¾ Affiliation changed
¾ Superseded
¾ Cessation of operation
¾ Remove from CRL: defer till Delta-CRL
¾ Certificate hold: defer
Invalidity Date
© Ravi Sandhu 2000-2004 30
CRL DISTRIBUTION POINTS
INDIRECT-CRL
Certificate
hold reason code in CRL
Supporting CRL entry extension
¾ Instruction code: instructions on what
to do with held certificate
• call CA, repossess token
GENERAL HIERARCHICAL
STRUCTURE
Z
X Y
Q R S T
A C E G I K M O
a b c d e f g h i j k l m n o p
© Ravi Sandhu 2000-2004 36
GENERAL HIERARCHICAL
STRUCTURE WITH ADDED LINKS
Z
X Y
Q R S T
A C E G I K M O
a b c d e f g h i j k l m n o p
© Ravi Sandhu 2000-2004 37
TOP-DOWN HIERARCHICAL
STRUCTURE
Z
X Y
Q R S T
A C E G I K M O
a b c d e f g h i j k l m n o p
© Ravi Sandhu 2000-2004 38
PEM CERTIFICATION GRAPH
Internet Policy
IPRA Registration Authority
Policy Certification
Authorities (PCAs)
Subjects
© Ravi Sandhu 2000-2004 Sandhu Sandhu 39
SET CA HIERARCHY
Root
Geo-Political
Bank Acquirer
Customer Merchant
© Ravi Sandhu 2000-2004 40
FOREST OF HIERARCHIES