CSE 543 Computer Security: Risks of PKI - Josh Schiffman & Archana Viswanath Ten Risks of PKI: What You're not Being Told about Public Key Infrastructure.

Slides:

Advertisements

Similar presentations

What is. Digital Certificate It is an identity.

Advertisements

Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.

Public Key Infrastructure Alex Bardas. What is Cryptography ? Cryptography is a mathematical method of protecting information –Cryptography is part of,

CIS 725 Key Exchange Protocols. Alice ( PB Bob (M, PR Alice (hash(M))) PB Alice Confidentiality, Integrity and Authenication PR Bob M, hash(M) M, PR Alice.

1 Lecture 17: SSL/TLS history, architecture basic handshake session initiation/resumption key computation negotiating cipher suites application: SET.

COEN 350 Public Key Infrastructure. PKI Task: Securely distribute public keys. Certificates. Repository for retrieving certificates. Method for revoking.

Grid Security Infrastructure Tutorial Von Welch Distributed Systems Laboratory U. Of Chicago and Argonne National Laboratory.

Lecture 2: Security Rachana Ananthakrishnan Argonne National Lab.

Public Key Management and X.509 Certificates

ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.

Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.

Trust and the Public Key Infrastructure (PKI) Sangyoon Oh Florida State University Computer Security Projects GS Spring 2001.

DESIGNING A PUBLIC KEY INFRASTRUCTURE

A Third Party Service for Providing Trust on the Internet Work done in 2001 at HP Labs by Michael VanHilst and Ski Ilnicki.

16.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

CSCI283 Fall 2005 GWU All slides from Bishop’s slide set Public Key Infrastructure (PKI)

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 6 Wenbing Zhao Department of Electrical and Computer Engineering.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Public Key Management Brent Waters. Page 2 Last Time  Saw multiple one-way function candidates for sigs. OWP (AES) Discrete Log Trapdoor Permutation.

November 1, 2006Sarah Wahl / Graduate Student UCCS1 Public Key Infrastructure By Sarah Wahl.

Cryptography1 CPSC 3730 Cryptography Chapter 10 Key Management.

1 Key Establishment Symmetric key problem: How do two entities establish shared secret key in the first place? Solutions: Deffie-Hellman trusted key distribution.

8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.

Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.

Introduction to Cryptography and Security Mechanisms Dr Keith Martin McCrea

CMSC 414 Computer and Network Security Lecture 20 Jonathan Katz.

1 Key Establishment Symmetric key problem: How do two entities establish shared secret key over network? Solution: trusted key distribution center (KDC)

Unlinkable Secret Handshakes and Key-Private Group Key Management Schemes Author: Stanislaw Jarecki and Xiaomin Liu University of California, Irvine From:

Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.

Security Management.

1 CS 194: Distributed Systems Security Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering and Computer Sciences.

ECE453 – Introduction to Computer Networks Lecture 18 – Network Security (I)

Part Two Network Security Applications Chapter 4 Key Distribution and User Authentication.

Secure r How do you do it? m Need to worry about sniffing, modifying, end- user masquerading, replaying. m If sender and receiver have shared secret.

Introduction to Secure Messaging The Open Group Messaging Forum April 30, 2003.

Public Key Infrastructure (X509 PKI) Presented by : Ali Fanian.

Lecture 5.3: Key Distribution: Public Key Setting CS 436/636/736 Spring 2012 Nitesh Saxena.

Networks Management and Security Lecture 3.

Introduction1-1 Data Communications and Computer Networks Chapter 6 CS 3830 Lecture 31 Omar Meqdadi Department of Computer Science and Software Engineering.

Digital Envelopes, Secure Socket Layer and Digital Certificates By: Anthony and James.

Kerberos. What is Kerberos? Network authentication protocol Developed at MIT in the mid 1980s Available as open source or in supported commercial software.

Public Key Infrastructure (X509 PKI) Presented by : Ali Fanian

Fall 2010/Lecture 321 CS 426 (Fall 2010) Key Distribution & Agreement.

1. 2 Overview In Exchange security is managed by assigning permissions in Active Directory Exchange objects are secured with DACL and ACEs Permissions.

Chapter 3 (B) – Key Management; Other Public Key Cryptosystems.

8-1 Chapter 8 Security Computer Networking: A Top Down Approach 6 th edition Jim Kurose, Keith Ross Addison-Wesley March 2012 part 2: Message integrity.

Digital Signatures, Message Digest and Authentication Week-9.

Protocols for public-key management. Key management –two problems Distribution of public keys (for public- key cryptography) Distribution of secret keys.

ECE509 Cyber Security : Concept, Theory, and Practice Key Management Spring 2014.

Public Key Infrastructure (PKI) Chien-Chung Shen

Security fundamentals Topic 5 Using a Public Key Infrastructure.

Fall, Privacy&Security - Virginia Tech – Computer Science Click to edit Master title style Cryptographic Security Identity-Based Encryption.

Encryption CS110: Computer Science and the Internet.

Network Security Continued. Digital Signature You want to sign a document. Three conditions. – 1. The receiver can verify the identity of the sender.

Pkiuniversity.com. Alice Bob Honest Abe’s CA Simple PKI hierarchy.

Computer and Network Security - Message Digests, Kerberos, PKI –

Group 9 Chapter 8.3 – 8.6. Public Key Algorithms  Symmetric Key Algorithms face an inherent problem  Keys must be distributed to all parties but kept.

Key Management. Authentication Using Public-Key Cryptography  K A +, K B + : public keys Alice Bob K B + (A, R A ) 1 2 K A + (R A, R B,K A,B ) 3 K A,B.

Digital Signatures and Digital Certificates Monil Adhikari.

Key Management Network Systems Security Mort Anvari.

EGEE is a project funded by the European Union CA overview and requirements Ognjen Prnjat, Nikos Vogiatzis GRNET EGEE-SEE regional kick-off, April 7-8.

CMSC 414 Computer and Network Security Lecture 18 Jonathan Katz.

1 SUBMITTED BY- PATEL KUMAR C.S.E(8 th - sem). SUBMITTED TO- Mr. DESHRAJ AHIRWAR.

 Attacks and threats  Security challenge & Solution  Communication Infrastructure  The CA hierarchy  Vehicular Public Key  Certificates.

Prof. Reuven Aviv, Nov 2013 Public Key Infrastructure1 Prof. Reuven Aviv Tel Hai Academic College Department of Computer Science Public Key Infrastructure.

CS480 Cryptography and Information Security

刘振上海交通大学计算机科学与工程系电信群楼3-509

Chapter 4 Cryptography / Encryption

刘振上海交通大学计算机科学与工程系电信群楼3-509

Presentation transcript:

CSE 543 Computer Security: Risks of PKI - Josh Schiffman & Archana Viswanath Ten Risks of PKI: What You're not Being Told about Public Key Infrastructure Joshua Schiffman Archana Viswanath

CSE 543 Computer Security: Risks of PKI - Josh Schiffman & Archana Viswanath Computer Security ● Security is a business ○ Especially PKI ● PKI needs business to thrive ○ Buy certificates ○ PKI equipment ● Certificates are the commodity ○ How trustworthy are they?

CSE 543 Computer Security: Risks of PKI - Josh Schiffman & Archana Viswanath Categories of Risk ● Security is a chain ○ Only as strong as the weakest link ● We identify three main categories for risk ○ Trust in the Certification Authority (CA) ○ Trust in the encryption keys ○ Trust in the users

CSE 543 Computer Security: Risks of PKI - Josh Schiffman & Archana Viswanath Certification Authorities ● PKI requires distribution of public keys ○ Dangerous to send in the clear ● CAs provide certificates binding name to key ○ What makes a CA trusted? ○ What guarantee do we have the certificate is real? Alice CA KBKB Really? This is Bob's public key

CSE 543 Computer Security: Risks of PKI - Josh Schiffman & Archana Viswanath Content Authorities ● Certificates contain more than just a key ○ Name / ID ○ DNS for SSL ● Who is authorized to provide this content ○ CAs are not authorities ○ Contrary to many other systems ▶ Business name ▶ Licenses ● Does it always matter? ○ Offers no added encryption

CSE 543 Computer Security: Risks of PKI - Josh Schiffman & Archana Viswanath Registration Authority ● Registration Authorities (RA) ○ Authority on the contents ○ Establish secure communication with the CA ● What guarantees are in the RA+CA model? ○ CAs can forge certificates ○ More vectors for attack ○ Authorities physically possessing the CA helps ▶ Breaks some business models

CSE 543 Computer Security: Risks of PKI - Josh Schiffman & Archana Viswanath Identifying the Applicant ● Does the CA verify applications? ○ Identity checking ○ Are the credentials easy to obtain? ● Is there private key verification? ○ Possessing the public key for the certificate ▶ Does not prove possession of private key Alice CA KAKA Really? This is my public key

CSE 543 Computer Security: Risks of PKI - Josh Schiffman & Archana Viswanath Securing the CA ● CAs don't keep secrets ○ All verification is done with public keys ● Use “root certificates" to vouch for the certificate ○ Self-signed ○ Form a chain of trust ▶ Must end at some ultimately trusted party ● Attackers can inject their own root keys ○ Spoof public keys ● Physically protect the CA