ITA, 3.11.2011, 7-SecureEmail.pptx 1 Internet Security 1 (IntSi1) Prof. Dr. Andreas Steffen Institute for Internet Technologies and Applications (ITA)

Slides:



Advertisements
Similar presentations
Kommunikationssysteme (KSy) - Block 8
Advertisements

Spring 2012: CS419 Computer Security Vinod Ganapathy SSL, etc.
Cryptography and Network Security Sixth Edition by William Stallings.
Security: PGP and S/MIME. 2 Outline  PGP – services – message format – key management – trust management  S/MIME – services – message formats.
Cryptography Chapter 7 Part 4 Pages 833 to 874. PKI Public Key Infrastructure Framework for Public Key Cryptography and for Secret key exchange.
ITA, , 8-TLS.pptx 1 Internet Security 1 (IntSi1) Prof. Dr. Andreas Steffen Institute for Internet Technologies and Applications (ITA) 8 Transport.
1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Principles of Information Security, 2nd edition1 Cryptography.
Chapter 5 Electronic mail security. Outline Pretty good privacy S/MIME Recommended web sites.
1 Pertemuan 12 Security Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.
Information Networking Security and Assurance Lab National Chung Cheng University Guidelines on Electronic Mail Security
NS-H / Security. NS-H / Security is one of the most widely used and regarded network services currently message.
Electronic mail security
Copyright, 1996 © Dale Carnegie & Associates, Inc. Digital Certificates Presented by Sunit Chauhan.
Henric Johnson1 Electronic mail security Henric Johnson Blekinge Institute of Technology, Sweden
Cryptography and Network Security Chapter 15 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
S/MIME.
Guide to Operating System Security Chapter 10 Security.
CSc 8222 Network Security Security WenZhan Song Cryptography and Network Security1.
Secure Data Transmission EDI-INT AS1, AS2, AS3 Kevin Grant.
Chapter 7 – Electronic Mail Security
Electronic Mail Security
S/MIME and CMS Presentation for CSE712 By Yi Wen Instructor: Dr. Aidong Zhang.
1 Network Security Lecture 9 Security. 2 CINS/F1-01 Objectives of Lecture Understand how systems operate over networks. Classify the threats.
1 Chapter 5 Electronic mail security. 2 Outline Pretty good privacy S/MIME Recommended web sites.
Chapter 15 Electronic Mail Security – Part II Data & Network Security Spring 2006 Dr. Jalili.
Prof. John A. Copeland fax Office: Klaus
16.1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 16 Security at the Application Layer: PGP and.
Chap 81 Electronic mail security. Chap 82 Outline Pretty good privacy S/MIME Recommended web sites.
Electronic mail security. Outline Pretty good privacy S/MIME.
Network Security Essentials Chapter 7 Fourth Edition by William Stallings (Based on Lecture slides by Lawrie Brown)
Chapter 6 Electronic Mail Security MSc. NGUYEN CAO DAT Dr. TRAN VAN HOAI 1.
1 Electronic mail security Ola Flygt Växjö University, Sweden
Cryptography and Network Security (CS435) Part Twelve (Electronic Mail Security)
A. Steffen, , 0-Overview.pptx 1 Information Security 2 (InfSi2) Prof. Dr. Andreas Steffen Institute for Internet Technologies and Applications.
1 Electronic Mail Security Outline Pretty good privacy S/MIME Based on slides by Dr. Lawrie Brown of the Australian Defence Force Academy, University College,
1 Chapter 5 Electronic mail security. 2 Outline Pretty good privacy S/MIME Recommended web sites.
Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 21 – Internet Security.
COEN 350 Security. Distribution List Simplest: Single recipient per message. Distribution List Send mail to a set of recipients. Remote.
SECURITY – Chapter 15 SECURITY – Chapter 15 ….for authentication and confidentiality PGP 1.Uses best algorithms as building blocks 2.General.
ECE-8813 / CS Prof. John A. Copeland fax Office:
1 Recall from CS x34: Internet standards were published in two parts in 1982: RFC 822: STANDARD FOR THE FORMAT OF ARPA INTERNET TEXT MESSAGES by.
S/MIME (Secure/Multipurpose Internet Mail Extensions) security enhancement to MIME – original Internet RFC822 was text only – MIME provided.
Authentication Applications 1. Kerberos 2. Key Management and Distribution 3. X.509 Directory Authentication service 4. Public Key Infrastructure 5. Electronic.
SIP Security Issues : The SIP Authentication Procedure and its Processing Load Speaker: Lin-Yi Wu Advisor : Prof. Yi-Bing Lin Date : 2003/04/09.
Electronic Mail Security Prepared by Dr. Lamiaa Elshenawy
7.6 Secure Network Security / G.Steffen1. In This Section Threats to Protection List Overview of Encrypted Processing Example.
Security SMIME IT352 | Network Security |Najwa AlGhamdi 1.
By Marwan Al-Namari & Hafezah Ben Othman Author: William Stallings College of Computer Science at Al-Qunfudah Umm Al-Qura University, KSA, Makkah 1.
Security By Meenal Mandalia. What is ? stands for Electronic Mail. much the same as a letter, only that it is exchanged in a different.
Chapter 7 : Web Security Lecture #1-Week 12 Dr.Khalid Dr. Mohannad Information Security CIT 460 Information Security Dr.Khalid Dr. Mohannad 1.
Prof. Wenguo Wang Network Information Security Prof. Wenguo Wang Tel College of Computer Science QUFU NORMAL UNIVERSITY.
1 CNLab/University of Ulsan Chapter 16 Electronic Mail Security  PGP (Pretty Good Privacy)  S/MIME.
Lecture 8 (Chapter 18) Electronic Mail Security Prepared by Dr. Lamiaa M. Elshenawy 1.
第五章 电子邮件安全. Security is one of the most widely used and regarded network services currently message contents are not secure –may be inspected.
Electronic mail security
K. U. Khimani Asst. Prof. IT Dept. VVP Engineering College
Security is one of the most widely used and regarded network services
S/MIME T ANANDHAN.
Security at the Application Layer: PGP and S/MIME
(free certificate not available)
ELECTRONIC MAIL SECURITY
ELECTRONIC MAIL SECURITY
Cryptography and Network Security
….for authentication and confidentiality PGP
Presentation transcript:

ITA, , 7-Secure .pptx 1 Internet Security 1 (IntSi1) Prof. Dr. Andreas Steffen Institute for Internet Technologies and Applications (ITA) 7 Secure

ITA, , 7-Secure .pptx 2 Security Protocols for the OSI Stack Application layerssh, S/MIME, PGP, Kerberos, WSSTransport layerSSL, TLSNetwork layerIPsecData Link layer[PPTP, L2TP], IEEE 802.1X, IEEE 802.1AE, IEEE i (WPA2) Physical layerQuantum CryptographyCommunication layersSecurity protocols

ITA, , 7-Secure .pptx 3 Internet Security 1 (IntSi1) 7.1 S/MIME

ITA, , 7-Secure .pptx 4 MIME – Multipurpose Internet Mail Extension RFC 1521 / RFC boundary1 Content–Type: text/plain; charset=us-ascii Dear Neo, please study the attached Word document. --boundary1 Content–Type: application/msword; name="Matrix.doc" Content–Transfer–Encoding: base64 ghyHhHUujhJhjH77n8HHGTrfvbnj756tbB9HG4VQpfyF467GhIGfH 4VQpfyF467GhIGfHfYT6jH77n8HHGghyHhHUujhJh756tbTrfv= --boundary1-- From: To: MIME–Version: 1.0 Content–Type: multipart/mixed; boundary=boundary1

ITA, , 7-Secure .pptx 5 S/MIME – Signed Message Format I RFC 1847 / RFC 2311 / PKCS #7 Content–Type: multipart/signed; protocol="application/pkcs7–signature"; micalg=sha1; boundary=boundary1 --boundary1 Content–Type: text/plain This is a clear-signed message. --boundary1 Content–Type: application/pkcs7–signature; name=smime.p7s Content–Transfer-Encoding: base64 Content–Disposition: attachment; filename=smime.p7s ghyHhHUujhJhjH77n8HHGTrfvbnj756tbB9HG4VQpfyF467GhIGfH 4VQpfyF467GhIGfHfYT6jH77n8HHGghyHhHUujhJh756tbTrfv= --boundary1-- MIME entity to be signed

ITA, , 7-Secure .pptx 6 S/MIME – Signed Message comprising Multiple Attachments Content–Type: multipart/signed; protocol="application/pkcs7–signature"; micalg=sha1; boundary=boundary1 --boundary1 Content–Type: multipart/mixed; boundary=boundary2... multipart message with various MIME-types... --boundary1 Content–Type: application/pkcs7–signature; name=smime.p7s Content–Transfer-Encoding: base64 Content–Disposition: attachment; filename=smime.p7s ghyHhHUujhJhjH77n8HHGTrfvbnj756tbB9HG4VQpfyF467GhIGfH 4VQpfyF467GhIGfHfYT6jH77n8HHGghyHhHUujhJh756tbTrfv= --boundary1--

ITA, , 7-Secure .pptx 7 PKCS #7 – Public Key Cryptography Standard Cryptographic Message Syntax Standard version digestAlgorithms contentInfo certificates (OPTIONAL) crls (OPTIONAL) signerInfos (SET OF) ASN.1 structure for the SignedData content type ASN.1 structure for the SignerInfo type version issuerAndSerialNumber digestAlgorithm authenticatedAttributes digestEncryptionAlgorithm encryptedDigest unauthenticatedAttributes several signers possible empty field (content carried in separate MIME entity) signature

ITA, , 7-Secure .pptx 8 Signed Message with Multiple Signatures MIME Entity (single-part or multi-part) Digest Algorithm #1 Signature #1 Private Key #1 Digest Algorithm #2 Signature #2 Private Key #2 Digest Algorithm #n Signature #n Private Key #n

ITA, , 7-Secure .pptx 9 Signed Message Microsoft Outlook 2007

ITA, , 7-Secure .pptx 10 S/MIME – Signed Message Format II RFC 2311 / PKCS #7 Content–Type: application/pkcs7–mime; smime–type=signed–data; name=smime.p7m Content–Transfer-Encoding: base64 Content–Disposition: attachment; filename=smime.p7m ghyHhHUujhJhjH77n8HHGTrfvbnj756tbB9HG4VQpfyF467GhIGfH 4VQpfyF467GhIGfHfYT6jH77n8HHGghyHhHUujhJh756tbTrfv= MIME content carried within PKCS#7 Signed Data Object This alternative signing format is optionally used by MS Outlook Pro: MIME content is not prone to changes of the transfer encoding enforced by intermediate mail transfer agents. Contra: In order to read the emedded MIME message, the receiver‘s mail client must support S/MIME.

ITA, , 7-Secure .pptx 11 S/MIME – Configuration Options Microsoft Outlook 2007

ITA, , 7-Secure .pptx 12 S/MIME – Encrypted Message Format RFC 2311 / PKCS #7 Content–Type: application/pkcs7–mime; smime–type=enveloped–data; name=smime.p7m Content–Transfer-Encoding: base64 Content–Disposition: attachment; filename=smime.p7m ghyHhHUujhJhjH77n8HHGTrfvbnj756tbB9HG4VQpfyF467GhIGfH 4VQpfyF467GhIGfHfYT6jH77n8HHGghyHhHUujhJh756tbTrfv= version recipientInfos encryptedContentInfo ASN.1 structure for the EnvelopedData content type several recipients possible (encrypted symmetric key ) contentType contentEncryptionAlgorithm encryptedContent encrypted MIME entity (single-part or multi-part)

ITA, , 7-Secure .pptx 13 Encrypted Message with Multiple Recipients Envelope using Symmetric Encryption MIME Entity (single-part or multi-part) Random Key Symmetric Encryption Algorithm Encrypted MIME Entity Encrypted Key #n Public Key #n Encrypted Key #2 Public Key #2 Encrypted Key #1 Public Key #1

ITA, , 7-Secure .pptx 14 Encrypted Message Microsoft Outlook 2007

ITA, , 7-Secure .pptx 15 Signed and Encrypted Messages Mozilla Thunderbird

ITA, , 7-Secure .pptx 16 S/MIME – Signed and Encrypted Messages I Signing before Encryption MIME entity to be encrypted Signature(s) not visible before decryption (Anonymity) Content–Type: application/pkcs7–mime; smime–type=signed–data;... signedData SignedData ::= {... contentInfo } MIME entity to be signed Content–Type: application/pkcs7–mime; smime–type=enveloped–data;... envelopedData EnvelopedData ::= {... encryptedContentInfo } encrypted MIME entity

ITA, , 7-Secure .pptx 17 S/MIME – Signed and Encrypted Messages II Encryption before Signing MIME entity to be signed Signature(s) can be checked before decryption (Trust) Content–Type: application/pkcs7–mime; smime–type=signed–data;... signedData SignedData ::= {... contentInfo } Content – Type: application/pkcs7–mime; smime–type=enveloped–data;... envelopedData EnvelopedData ::= {... encryptedContentInfo } encrypted MIME entity MIME entity to be signed

ITA, , 7-Secure .pptx 18 Signing before Encryption Microsoft Outlook 2007

ITA, , 7-Secure .pptx 19 S/MIME – Managing Certificates Mozilla Thunderbird

ITA, , 7-Secure .pptx 20 S/MIME – Certificates (own and other people‘s) Mozilla Thunderbird

ITA, , 7-Secure .pptx 21 S/MIME – Certification Authorities Mozilla Thunderbird

ITA, , 7-Secure .pptx 22 S/MIME – Account Settings Mozilla Thunderbird

ITA, , 7-Secure .pptx 23 S/MIME Summary Antje Kool CA #2 AntjeBodo Sign Dear Bodo, … Antje Sign with private key Verify with public key Kool CA #0 AntjeBodo Encrypt Antje Kool CA #2 Dear Antje, … Bodo Decrypt with private key Encrypt with public key Bob Kool CA #3

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.