Trusted Archive Protocol (TAP) Carl Wallace

Slides:

Advertisements

Similar presentations

Reporting Workflow Rita Noumeir, Ph.D. IHE Technical Committee.

Advertisements

Chapter 14 – Authentication Applications

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E IEPG March 2000 APNIC Certificate Authority Status Report.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

Chapter 14 From Cryptography and Network Security Fourth Edition written by William Stallings, and Lecture slides by Lawrie Brown, the Australian Defence.

Authentication Cristian Solano. Cryptography is the science of using mathematics to encrypt and decrypt data. Public Key Cryptography –Problems with key.

Electronic signature - simply, long-term, safely and in accordance with Commission Decision 2011/130/EU Peter Rybár National Security Authority Information.

M.Sc. Hrvoje Brzica Boris Herceg, MBA Financial Agency – FINA Ph.D. Hrvoje Stancic, assoc. prof. Faculty of Humanities and Social Sciences Long-term Preservation.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.

Apr 2, 2002Mårten Trolin1 Previous lecture On the assignment Certificates and key management –Obtaining a certificate –Verifying a certificate –Certificate.

Resource PKI: Certificate Policy & Certification Practice Statement Dr. Stephen Kent Chief Scientist - Information Security.

November 1, 2006Sarah Wahl / Graduate Student UCCS1 Public Key Infrastructure By Sarah Wahl.

Resource Certificate Profile SIDR WG Meeting IETF 66, July 2006 draft-ietf-sidr-res-certs-01 Geoff Huston Rob Loomans George Michaelson.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E 36th RIPE Meeting Budapest 2000 APNIC Certificate Authority Status Report.

PAWN: A Novel Ingestion Workflow Technology for Digital Preservation

CERTIFICATES “a document containing a certified statement, especially as to the truth of something ”

Copyright, 1996 © Dale Carnegie & Associates, Inc. Digital Certificates Presented by Sunit Chauhan.

PAWN: A Novel Ingestion Workflow Technology for Digital Preservation Mike Smorul, Joseph JaJa, Yang Wang, and Fritz McCall.

DNS-centric PKI Sean Turner Russ Housley Tim Polk.

Long-term Archive Service Requirements draft-ietf-ltans-reqs-00.txt.

Archive Time-Stamps-Syntax Dr. Ulrich Pordesch

Security Standards under Review for esMD. Transaction Timeline An esMD transaction begins with the creation of some type of electronic content (e.g. X12.

Wolfgang Schneider NSI: A Client-Server-Model for PKI Services.

Trust Anchor Management Problem Statement 69 th IETF Trust Anchor Management BOF Carl Wallace.

Selective and Authentic Third-Party distribution of XML Documents - Yashaswini Harsha Kumar - Netaji Mandava (Oct 16 th 2006)

Digital Signatures and e-Identity. Getting the best out of DSS / DSS-X services. Andreas Kuehne – DSS-X member.

Using SCVP to Convey Evidence Records Carl Wallace Orion Security Solutions.

Registration Processing for the Wireless Internet Ian Gordon Director, Market Development Entrust Technologies.

Configuring and Troubleshooting Identity and Access Solutions with Windows Server® 2008 Active Directory®

Java Security Pingping Ma Nov 2 nd, Overview Platform Security Cryptography Authentication and Access Control Public Key Infrastructure (PKI)

Web Security : Secure Socket Layer Secure Electronic Transaction.

Communications-Electronics Security Group. PKI interoperability issues for UK Government Richard Lampard

CERTIFICATES. What is a Digital Certificate? Electronic counterpart to a drive licenses or a passport. Enable individuals and organizations to secure.

IETF - LTANS, March 2004P. Sylvester, Edelweb & A. Jerman Blazic, SETCCE Introduction The following slides were prepared as a result of analysis and discussion.

Using Encryption with Microsoft SQL Server 2000 Kevin McDonnell Technical Lead SQL Server Support Microsoft Corporation.

Slide 1 © 2004 Reactivity The Gap Between Reliability and Security Eric Gravengaard Reactivity.

Integrating security services with the automatic processing of content TERENA 2001 Antalya, May 2001 Francesco Gennai, Marina Buzzi Istituto.

Public Key Infrastructure (X509 PKI) Presented by : Ali Fanian

Evidence Record Syntax <draft-ietf-ltans-ers-00.txt>

Matej Bel University Cascaded signatures Ladislav Huraj Department of Computer Science Faculty of Natural Sciences Matthias Bel University Banska Bystrica.

CMC and PKI4IPSEC Jim Schaad. Requirements Issues What does MAY really mean What does SHOULD really mean Requirements on Admin Peer Requirements on structure.

SAML FTF #4 Workitems Bob Blakley. SAML “SenderVouches” SubjectConfirmation Method: A Proposed Alternative to Bindings 0.5 Proposals.

XML Evidence Record Syntax

Cryptography and Network Security Chapter 14 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

OAIS Rathachai Chawuthai Information Management CSIM / AIT Issued document 1.0.

FMS/TR-069 File Download Security Source: QUALCOMM Incorporated Contact(s): Anand Palanigounder Yinian Mao

DIGITAL SIGNATURE.

LTANS service and protocol Carl Wallace (on behalf of Peter Sylvester) 6 Aug 2004, 60th IETF, San Diego.

PKI Future Directions 29 November 2001 Russ Housley RSA Laboratories CS – Class of 1981.

WASP Application note #1 1 WASP (Web Activated Signature Protocol) Application Note #1 – Signature Validation and Multiple Signatures WASP was designed.

Manifests (and Destiny?) Stephen Kent BBN Technologies.

LTANS WG: ERS November 7, 2005 Tobias Gondrom. LTANS WG (ltans): ERS Draft straightened up Corrected ERS (feedback from Peter and Carl) Prepared for WG.

Task Force CoRD Meeting / XML Security for Statistical Data Exchange Gregory Farmakis Agilis SA.

Long-term Archive Service Requirements November 9, 2004.

Long-term Archive and Notary Services (LTANS) Working Group Charter Review.

SCVP-28 Tim Polk November 8, Current Status Draft -27 was submitted in June ‘06 –AD requested a revised ID 8/11 –No related discussion on list –Editors.

Receipt Token Profile for Web Services Eric Gravengaard Reactivity.

Presented by : Piero Milani ( InfoCamere - Italy)Piero Milani InfoCamere - Italy VCD Signature & VCD Verification strategy as seen by InfoCamere ( WP1.

VNF Package Integrity and Authenticity – Public key based

Denis Pinkas. Bull SA. Cryptographic Maintenance Policy IETF LTANS meeting in Paris August, 1rst , 2005 Denis Pinkas. Bull SA.

Trust Anchor Management Problem Statement

Cryptography and Network Security

Authentication Applications

Presentation transcript:

Trusted Archive Protocol (TAP) Carl Wallace

What is TAP? A specification that defines: Data structures for representation of archived data and artifacts of the archive process Transactions for interacting with a Trusted Archive Authority (TAA) Service that preserves data via periodic timestamp refresh Transactions include Submission of data for archiving Retrieval of archived data and evidence Deletion of archived data

TAP Goals Data integrity preservation in perpetuity Achieved through timely timestamp refresh Preservation of relevant cryptographic data Data format and data validity agnostic Any type of data (cryptographic or non- cryptographic) can be preserved “Valid” or “invalid” data can be preserved Support additional, optional server-side operations Data validation (evidence verification) Certificate path processing (evidence collection) Etc. Support non-TAP-aware clients for submission

TAP Terminology Archived data Data submitted for archiving (with optional type information) Target of submission operation Archive token Generated by TAA and returned to the submitter to facilitate future retrieval (essentially a canned query) Includes a timestamp, submitter name, tracking information Suitable for inclusion in documents as an unsigned attribute Result of submission operation ArchivedData ::= SEQUENCE { type ArchivedDataType OPTIONAL, data OCTET STRING } ArchiveToken ::= ContentInfo -- content type: id-tap-archiveToken -- content: ArchiveTokenData ArchiveTokenData ::= SEQUENCE { submitterName GeneralName, timestamp TimeStampToken, //rfc3161 curTime GeneralizedTime, trackingInfo TrackingInfos OPTIONAL }

TAP Terminology (continued) Archive record Nested structure containing the timestamp history (innermost layer is the original timestamp) Each layer can be self-contained for verification purposes Maintained by the TAA ArchiveRecord ::= ContentInfo -- content type: id-tap-archiveRecordData -- or id-signedData (id-ct-TSTInfo) -- content: ArchiveRecordData or SignedData (TSTInfo) ArchiveRecordData ::= SEQUENCE { timestampedData TimeStampedData, timestamp TimeStampToken } TimeStampedData ::= SEQUENCE { prevArchRecord ContentInfo, -- previous record messageImprint MessageImprint -- hash archived data }

TAP Terminology (continued) Archive package Minimally includes archive token, archive record and archived data Result of retrieval operation ArchivePackage ::= SEQUENCE { archiveToken ArchiveToken, packageData [0] ArchivePackageData OPTIONAL, pollReference [1] OCTET STRING OPTIONAL } ArchivePackageData ::= SEQUENCE { digestAlgorithms DigestAlgorithmIdentifiers, policy OBJECT IDENTIFIER OPTIONAL, archiveRecord ArchiveRecord, cryptoInfos [0] CryptoInfos OPTIONAL, archivedData ArchivedData }

TAA Services Required services Archived data preservation Archive token generation (including timestamp acquisition) Periodic refresh of the archive record Preservation of PKI information for verification of archive record (i.e. certs, CRLs, OCSP responses, trust anchors, etc.) Optional services Historical trust anchor preservation (i.e. give me trust anchors known at time X) To permit operation of one TAA for data and another TAA for trust roots PKI information collection and/or validation (SCVP) Cryptographic message validation (DVCS)

TAP Transactions All rely upon CMS Requests may optionally be authenticated Deletion requests MUST be authenticated All responses are signed using SignedData CMS messages Only TAA-generated signatures are those on response messages All TAP requests/responses include an optional archive controls field to support nesting of related requests Type/value structure a la extensions, attributes, etc. Field is request/response oriented Intended to convey nonce, SCVP, DVCS, etc.

TAP Submission 1) Submission request -submitter’s name -archived data -policy (optional) -archive controls (optional) Submission client TAA 3) Submission response -status -archive token -archive controls (optional) 2) TAA Processing -Check authentication and authorization (optional) -Process archive controls, if present -Obtain (or generate) a timestamp for archived data -Create archive token and archive record -Store archived data and archive record -Generate response containing archive token and archive control responses, if necessary -Sign and send response 4) Client processing -Verify TAA signature on response -Verify timestamp from archive token - Store archive token for future use

TAA Archive Record Refresh Following submission, TAA is responsible for maintaining archive records without further involvement of the submitter Periodically the TAA will obtain a new timestamp for each archive record - New timestamp covers the previous archive record plus a hash of the archived data generated using a current hashing algorithm - Each layer should be self-contained with regard to certificates, CRLs, etc. - Frequency of refresh operations is dictated by TSA certificate validity period and confidence in current cryptographic algorithms - Structure grows over time

TAP Retrieval 1) Retrieval request -requestor’s name -archive token (or info to initiate a search) -archive controls (optional) Retrieval client TAA 3) Retrieval response -status -archive package -archive controls (optional) 2) TAA Processing -Check authentication and authorization (optional) -Process archive controls, if present -Retrieve archive record and archived data -Create archive package containing archived data, archive token and archive record -Generate response containing archive package and archive control responses, if necessary -Sign and send response 4) Client processing -Verify TAA signature on response -Verify archive record (including all timestamps)

TAP Deletion* 1) Deletion request -requestor’s name -archive token (or info to initiate a search) -archive controls (optional) Deletion client TAA 3) Deletion response -status -archive package -archive controls (optional) 2) TAA Processing -Authenticates requestor -Check authorization (optional) -Process archive controls, if present -Delete archive record and archived data -Generate response containing archive token and archive control responses, if necessary -Sign and send response 4) Client processing -Verify TAA signature on response *Deletion could simply be termination of future refresh operations not physical deletion

What’s Next? Originally submitted as a PKIX draft Topic not accepted as a WG task Draft expired in August Cannibalize, revise or discard -“Long-Term Archive Architecture” draft posted to LTANS web site describes some recommended updates - Specifically cites limited support for searching an archive; no specified means for including metadata, e.g. filename; no means to specify a preservation period, i.e. point in time after which data need no longer be preserved