EU GridPMA meeting Dublin, January 2010

Slides:

Advertisements

Similar presentations

Usage of PGP in TACAR 19th OGF Meeting Chapel Hill, USA February 1, 2007 Licia Florio Project Development Officer

Advertisements

Test process essentials Riitta Viitamäki,

Information Security & Cryptographic Principles. Infosec and Cryptography Subjects / Topics : 1. Introduction to computer cryptography 1. Introduction.

DECO3008 Design Computing Preparatory Honours Research KCDCC Mike Rosenman Rm 279

Lecture 2 Page 1 CS 236, Spring 2008 Security Principles and Policies CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Spring, 2008.

 Authorization via symmetric crypto  Key exchange o Using asymmetric crypto o Using symmetric crypto with KDC  KDC shares a key with every participant.

03 December 2003 Public Key Infrastructure and Authentication Mark Norman DCOCE Oxford University Computing Services.

Computer Science Public Key Management Lecture 5.

UNIT 9. CLIL THINKING SKILLS

Risk Analysis vs Security Controls. Security Controls Risk assessment is a flawed safeguard selection method. There is a tendency to confuse security.

@sparqs_scotland Course Rep Training name of trainer associate trainer | sparqs.

Blueprint Meeting Notes Feb 20, Feb 17, 2009 Authentication Infrastrusture Federation = {Institutes} U {CA} where both entities can be empty TODO1:

The Market, Higher Education and Inequality Pedagogic quality and inequality in undergraduate degrees ( )

Advanced Database Course (ESED5204) Eng. Hanan Alyazji University of Palestine Software Engineering Department.

Properties and Mental Computation p. 80. Math talk What are some math properties that we use? Why do you think we have them? Do you ever use them?

IOTA Questions for RPs Sept 9, 2013 Bucharest, Romania.

DIGITAL SIGNATURE.

The Quality Assurance Agency for Higher Education ‘Tutoring for the 21 st Century’ 28 January 2015 Harriet Barnes Natalja Sokorevica Standards, Quality.

RISK MANAGEMENT FOR COMMUNITY EVENTS. Today’s Session Risk Management – why is it important? Risk Management and Risk Assessment concepts Steps in the.

Fair admissions ▪Fair admissions system should: ▫Be transparent ▫Seek to minimise barriers ▫Strive to use reliable and valid assessment methods ▪How is.

Jens’ N th soapbox Can’t be a PMA without a Soapbox Jens Jensen, RAL EU GridPMA, Switch, Zürich, May 2009.

Soapbox (Q Series) The Scientific Method of Trust Querulous Quixotic Quest for Quotidian Quality Jens Jensen – j.jensen.ral xATx gmail.com.

Jens' obligatory soap box Can't be a PMA without a SoapBox A random collection of Soapy things Nicosia, Jan 2009.

Soapbox (S Series) Who, what, where, why, how Rome Soapbox, Jan 2013 Jens Jensen, Chief Soapbox Officer.

Zeepkist Jens Jensen STFC SurfNet, Utrecht, Jan 2011.

Soapbox (S-Series) Certificate Validation Jens Jensen, STFC.

TAG Presentation 18th May 2004 Paul Butler

Key management issues in PGP

Head of Library, Networked Services and Student Support

Decision Making We could use two films here, so we want lots of extra time. What to cut out? Dangerous minds is good hopefully for expectancy and equity.

Jens Jensen EU Grid PMA, Berlin Jan 2015

Personal Statement Guidance

Public Key Infrastructure (PKI)

Classic X.509 AP updates (v4.1)

MIDLANDS STATE UNIVERSITY FACULTY OF COMMERCE

Quality Management chapter 27.

TAG Presentation 18th May 2004 Paul Butler

Public Key Encryption Systems

CS480 Cryptography and Information Security

Virtual Face to Face Meetings for ID-check

Certificates An increasingly popular form of authentication

The Scientific Method A Way to Solve a Problem

Geography 413/613 Lecturer: John Masich

IMPORTANT: 20 minute assemblies

Teaching with Instructional Software

UC San Diego Department of Mathematics

Sophia Lafferty-hess | research data manager

Foundation Degree IT Project

HIPAA PRIVACY RULE IMPLEMENTATION – WHAT’S UP AFTER 4/14/03?

Public Key Infrastructure

recommendations for new teachers

The problem solving loop

Certificates An increasingly popular form of authentication

Welcome Recording Slide Deck Chat Box Mute

The Scientific Method ♫A Way to Solve a Problem♫

“Read your sources. Seriously.”

Legal Issues When Gathering Information

‘I Can’t needle myself!’ No Chance

Defining the Problem Questions that Clarify: Why do you say that?

Appropriate Access InCommon Identity Assurance Profiles

Psych 231: Research Methods in Psychology

PKI (Public Key Infrastructure)

LITERATURE REVIEW by Moazzam Ali.

Certificates An increasingly popular form of authentication

FCAT Science Standard Arianna Medina.

Security Principles and Policies CS 236 On-Line MS Program Networks and Systems Security Peter Reiher.

Doug Bellows – Inteliquent 3/18/2019

Public Key Encryption Systems

KISTI CA Report Status & Self-Audit

Properties of Real Numbers

Presentation transcript:

EU GridPMA meeting Dublin, January 2010 Jens’ Soapbox EU GridPMA meeting Dublin, January 2010

Soapboxes Explain Expose Expatiate Explicate Expand Expedite Expostulate Experiment Explore

This soapbox is about…Trust Meaning Trustworthiness (more or less) What it is, properties Why we have it Building it W&F

Trust – WN definitions “Certainty based on past experience,” reliance “The trait of believing in the honesty and reliability of others” “Complete confidence in a person or plan, etc”

Consider WoTs Like Thawte’s WoT Or PGP Trust Model

Relations Relations properties from maths: Reflexive: a~a Symmetric: a~b => b~a Transitive: a~b & b~c => a~c A relations may have any or all of these properties Exercise: prove or disprove S&T=>R

Reflexivity “I trust myself” … or do I? Why we have best practices The unknowns The known unknowns And the unknown unknowns

Building Trust Timeo Hominem Unius Libri Based on reputation Ideas Knowledge/skill (evidence of) Honesty/integrity (perceived, assumed) Contributions 2nd hand information (or 3rd etc)

Building Trust Basic F2F meeting – TrustBuilding Doing what is expected Not necessarily what we expect… We may expect people to not do what is expected

Trust based on Knowledge Knowledge pertaining to operation of CA Knowing what to do Normally Exceptional cases (devious flow) When something goes wrong

Improving Knowledge Normal operations Devious flow Training for CA managers? Devious flow Documentation – CAOPS Or covered by CA’s policy Papal infallibility

Improving Knowledge Sharing between CA managers Off the record When something goes wrong Gather unto the RAT for advice Assuming the combined RAT has the skills

Symmetry Some acts establish symmetric trust E.g. PMA trustbuilding Some are asymmetric establishers PMA accreditation Some acts break symmetry E.g. violating minreq

Transitivity Alice trusts Bob Bob trusts Charlie Charlie trusts Donna (etc) B C A D

Transitivity If numbers model the Level of Trust: Any practical use of such models? (rhetorical question for now…) .8 .8 B C .8 A D

Numbers Of course they don’t… [0,1] Fuzzy logic closer (not warm and fuzzy) Basic scientific principles: Subjective Emotional

Transitivity? PMA CA RP RA User

Transitivity? IGTF PMA CA RP RA User

Transitivity? IGTF PMA CA RP RA User Terena Inst.

Painting by Numbers Has been studied for PGP C A B D T1(a,b,t):=S(T(a,b,t),P(T(a,c,t),T(c,b,t)),P(T(a,d,t),T(d,b,t)))

Implementation Digital vs mechanical vs procedural Cf revoking physical key in real world Electronic locks PKI implements Trust Or does it? It implements a projection

Implementation

Requiring vs Enforcing Stalin: “Trust is good, control is better.” Me: “Just because you can’t – or don’t – enforce it doesn’t mean you shouldn’t require it.”

Requiring – Examples Cf. TERENA discussion Cf user passphrase length Institution promises to behave NREN checks if something goes wrong Cf user passphrase length Traceability of robot certs (if applicable)

Requiring vs Enforcing Require Requirements at time of agreement Follow up if something goes wrong Enforce Check and validate at time of agreement

Requiring vs Enforcing Less W&F Impose higher sanctions Validator disclaims responsibility? Enforcing Warmer and fuzzier Fewer sanctions for misuse Validator has part of responsibility

The Time Dimension Continuity Depreciation Staff change – handover process Disaster recovery Depreciation Re-establish trust

The Warm and Fuzzy Feeling Traceability By DN Via CA (usually) Naming the subject “Fuzzy matching” Uniqueness of names

A Deo Rex, A Rege Lex PMA CA RA User

The Time Dimension PMA CA RA User Revise Implement Re-check Rekey

Compare WoTs We are more structured and hierarchical Like CAs, really Can we learn from WoTs? Consequences of Type 1 Errors? Consequences of Type 2 Errors?

Basic Exercises How many reviewers does it take to review a CA How does this depend on their experience Process developed as we go along

Basic Exercises Would you trust my digital identity more if I had two, from different RAs (CAs) Would you trust it more if verified by more than one RA? How does this depend on the experience/training of the RA?

More Useful Exercises What are the goals we aim to achieve Cf some previous soapboxen Assurance Writing up into the document currently known as “essentials”

Advanced Case Studies? The need to revet (re-vet) identities Which time problem does it deal with? How does it deal with it? Are we solving a problem we don’t have Or can be solved in a better way Not enough things on top of other things But too many carts before horses

Conclusion(s) Trust models operate with incomplete information Implementations are (crude) approximations Academic models of some use

Conclusions(s) Potential benefits from more complex trust models Instead of solving the problem, identify the problem Then (and only then) solve it