Phillip Hallam-Baker Extended Validation Presentation to ISTTF September 23, 2008 VeriSign/Extended Validation ISTTF Presentation 9/23/2008.

Slides:

Advertisements

Similar presentations

Achieving online trust through Mutual Authentication.

Advertisements

High Validation SSL Certificates Mike Davies Marketing Director VeriSign Security Services EMEA.

Contrail and Federated Identity Management

Extended validation SSL March 2007 Tim Moses (chair, CA / Browser Forum)

Security that is... Ergonomic, Economical and Efficient! In every way! Stonesoft SSL VPN SSL VPN.

Click to edit Master title style Jonas Lindstrøm, Alexandra Institute Privacy-preserving attribute- based credentials.

ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.

Key Provisioning Use Cases and Requirements 67 th IETF KeyProv BOF – San Diego Mingliang Pei 11/09/2006.

SpectorSoft Corporation / Spector Pro, eBlaster, Spector for Mac OS ISTTF Presentation 9/23/2008 Enforcing Internet Safety for Children with Spector Pro.

Aristotle International Integrity™ Age and ID Verification Presentation to ISTTF September 23, 2008 Aristotle’s Integrity™ ISTTF Presentation 9/23/2008.

Experimental OpenID Service for DOEGrids Summer Student Program 2008 Jan Durand ESnet 08/06/08.

Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.

1 Trust Framework Portable Identity Schemes Trust Framework Portable Identity Schemes NIH iTrust Forum December 10, 2009 Chris Louden.

An Introduction to Security Concepts and Public Key Infrastructure (PKI) Mary Thompson.

Online Security Tuesday April 8, 2003 Maxence Crossley.

Using Digital Credentials On The World-Wide Web M. Winslett.

ExpectID® Product Suite Presentation to ISTTF September 23, 2008 IDology, Inc. / ExpectID Product Suite ISTTF Presentation 9/23/2008.

EGuardian, Inc. eGuardian Child Verification Presentation to ISTTF September 23, 2008 eGuardian, Inc. eGuardian Child Verification ISTTF Presentation 9/23/2008.

Presentation to ISTTF September 23, 2008 AssertID ISTTF Presentation 9/23/2008.

Icouldbe.org Dynamic, Internal Content Filter Presentation to ISTTF September 23, 2008 YOUR COMPANY NAME /PRODUCT NAME HERE ISTTF Presentation 9/23/2008.

Copyright, 1996 © Dale Carnegie & Associates, Inc. Digital Certificates Presented by Sunit Chauhan.

© 2004 VeriSign, Inc. Secure Letterhead Phillip Hallam-Baker Principal Scientist VeriSign Inc.

The Inconvenient Truth about Web Certificates Nevena Vratonjic Julien Freudiger Vincent Bindschaedler Jean-Pierre Hubaux June 2011, WEIS’11.

1. The VeriSign brand2. Extended Validation SSL

SIP Authorization Framework Use Cases Rifaat Shekh-Yusef, Jon Peterson IETF 91, SIPCore WG Honolulu, Hawaii, USA November 13,

VeriSign® Identity Protection (VIP) Overview. 2 2 VeriSign Confidential Trust on the Internet is More Compelling Than Ever 1.5 billion Internet users.

Empowering Business Dhan (Co-Founder)

Internet Trust Defined. Delivered. Electronic Business the Way It Was Meant to Be.

Cloud Security Julian Lovelock VP, Product Marketing, HID Global.

Digital Certificates Made Easy Sam Lutgring Director of Informational Technology Services Calhoun Intermediate School District.

Trusted Systems Laboratory Hewlett-Packard Laboratories Bristol, UK InfraSec 2002 InfraSec 2002 Bristol, October 2002 Marco Casassa Mont Richard.

EEC Board Preliminary Recommendations Quality Rating and Improvement System (QRIS) Provisional Standards Study.

2008 New York - Member Forum Council for Responsible Jewellery Practices, Ltd. Overview of CRJP.

Elements of Trust Framework for Cyber Identity & Access Services CYBER TRUST FRAMEWORK Service Agreement Trust Framework Provider Identity Providers Credential.

C HAPTER 4 A UTHENTICATION POLICY C YBER S ECURITY FOR E DUCATIONAL L EADERS : A G UIDE TO U NDERSTANDING AND I MPLEMENTING T ECHNOLOGY P OLICIES © Routledge.

1 June Richard Guida Stephanie Evans Johnson & Johnson Director, WWIS WWIS SAFE Infrastructure Overview.

Chapter 21 Distributed System Security Copyright © 2008.

Page 1 ©1999 InfoGard Laboratories, Inc Centre for Applied Cryptographic Research workshop, Nov. 8, 1999 Third party evaluations of CA cryptographic implementations.

High Assurance / Enhanced Validation Name of Presenter: Kevin Brown Date: August 5th Confidential.

Business Plan Your Proposed Company Name Here. Mission / Purpose of Your Business Give an overview here.

Security, Accounting, and Assurance Mahdi N. Bojnordi 2004

25 April 2005NVO Team Meeting - Tucson1 Interoperable Authentication And Authorization for the VO T HE US N ATIONAL V IRTUAL O BSERVATORY Background: Single.

PAPI: Simple and Ubiquitous Access to Internet Information Services JISC/CNI Conference - Edinburgh, 27 June 2002.

TPO Section TPO can manage own Account Approve/Verify Student Placement Data Form (Registration Form) Search Student Database (Registered on RGPV Portal.

The Different Payment Systems Different types of technologies Used for payment transactions on the Internet –SSL –SET –eDankort –MasterCard SecureCode.

Security and Data Sharing Interaction SDSC Auditorium Friday 830a-1000am.

Using PIV Cards with NIH Login Chris Leggett NIH Login Technical Lead CIT/NIH.

On the design of a MfAaaS service (Multi-factor-Authentication-as-a-Service)

QuoVadis Group Overview for EUGridPMA. Snapshot Trust/Link certificate services for the global enterprise –Digital certificates including End User, Qualified,

QuoVadis Group EUGridPMA Update September Overview ► Founded in 1999 in Bermuda, with particular focus providing PKI managed services to multinational.

QuoVadis accreditation with EuGridPMA Alessandro Usai

Maximize Your Hosting Business: Covering all your SSL requirements Tim Callan May 31, 2006 VeriSign / thawte Confidential.

Feyza Eryol TÜBİTAK ULAKBİM TR-GRID CA SELF-AUDIT & UPDATES.

SAML & OAuth V2 Nov 19/09. Goals Explore (useful) combinations of SAML & Oauth Builds on 2008 proposal from Ping ID for combining SAML SSO & Oauth authz.

Digital Certificates Presented by: Matt Weaver. What is a digital certificate? Trusted ID cards in electronic format that bind to a public key; ex. Drivers.

STI Interworking with SIP-PBXs

Industry news. Industry news Industry ? Industry ? 2 AOL Always on SSL All on SSL  by 2020, 100% of the online traffic will be https secured therefore.

Chris Wendt, David Hancock (Comcast)

Welcome MyCelium phone number MyCelium phone number.

Determine Applicability of Certificates by using standard CABF CP OIDs

Enhancing Web Application Security with Secure Hardware Tokens

E-MARC Recommendations

刘振上海交通大学计算机科学与工程系电信群楼3-509

WEQ-012 PKI Overview March 19, 2019

刘振上海交通大学计算机科学与工程系电信群楼3-509

Signing transactions anonymously with Identity Mixer in Hyperledger

September 12-14, 2018 Raleigh, NC.

Presentation transcript:

Phillip Hallam-Baker Extended Validation Presentation to ISTTF September 23, 2008 VeriSign/Extended Validation ISTTF Presentation 9/23/2008

Overview of Extended Validation Category: Age Verification of Minor Status Launched 2006 (for SSL) 10,000 customers, millions of users daily An industry standard for applying authentication criteria to organizations supported by 3 major browser providers and 30 Issuers Represents a state of the art understanding of the technical/legal/liability issues. ISTTF Presentation 9/23/2008

Overview of Proposed Market Child obtains OpenID (or SAML) credential – Can be from any accredited provider – Can employ any strong authentication technique E.g VeriSign supports OATH standard OTP token Child applies for accreditation from school School, identity provider are validated by CA – CA applies EV criteria extended for application CA is audited by WebTrust each year ISTTF Presentation 9/23/2008

Overview of Extended Validation Detailed, auditable criteria for verifying the identity of an organization and determining that it is accountable. – These criteria may be extended to schools, churches The CA/Browser forum criteria for SSL will not be directly applicable to this application but: – Extensive practical experience has been gained – Commercial issuers exist – Commercial auditors exist – The criteria were designed with extension in mind ISTTF Presentation 9/23/2008

Options 1.Create a parallel organization to CA/B forum – Can use EV criteria as a starting point – Would likely involve many of the same Cas 2.Extend CA/B Forum – Would require a major re-organization – Pro: provides international reach – Pro: avoid proliferating organizations – Con: AC/B Forum already has a mission ISTTF Presentation 9/23/2008

Q&A Phillip Hallam-Baker ISTTF Presentation 9/23/2008