Presentation is loading. Please wait.

Presentation is loading. Please wait.

LDAP PKI and PMI Schemas

Published by待待 隗 Modified over 7 years ago

Similar presentations

Presentation on theme: "LDAP PKI and PMI Schemas"— Presentation transcript:

1 LDAP PKI and PMI Schemas
TrustCoM Project LDAP PKI and PMI Schemas 4 Aug 2004 TrustCoM Project University of Salford

2 TrustCoM Project University of Salford
3 IDs in the series Internet X.509 Public Key Infrastructure LDAP Schema for X.509 CRLs <draft-ietf-pkix-ldap-crl-schema-02.txt> Internet X.509 Public Key Infrastructure LDAP Schema for X.509 Attribute Certificates <draft-ietf-pkix-ldap-ac-schema-01.txt> LDAP Schema for X.509 Certificates <draft-ietf-pkix-ldap-pkc-schema-00 ALL DESTINED FOR INFORMATIONAL RFCS 4 Aug 2004 TrustCoM Project University of Salford

3 TrustCoM Project University of Salford
Attribute Extraction LDAP directory [ ] XPS server + Search for Att 1.. Att i Return X.509 attribute Att1, Att2…Att n CA/AA 4 Aug 2004 TrustCoM Project University of Salford

4 TrustCoM Project University of Salford
The DIT Structure PKCs and ACs are held in child entries CRLs are held in child subtrees dc=com dc=myorg dc=com dc=myorg ou=My CA ou=people CRL AC containing roles cn=my entry Encryption PKC CRL entries Signing PKC serialno=nnnn + issuer=‘ou=MyCA,dc=myorg,dc=com’ 4 Aug 2004 TrustCoM Project University of Salford

5 Implementation Details
Implemented in OpenLDAP and newer Code is not in the main branch yet since it's being reviewed by OpenLDAP programmers 4 Aug 2004 TrustCoM Project University of Salford

6 TrustCoM Project University of Salford
LDAP Client view of XPS 4 Aug 2004 TrustCoM Project University of Salford

7 TrustCoM Project University of Salford
Way Forward Latest versions Added IANA considerations and acks, re-arranged object classes, aligned all 3 IDs, minor corrections Outstanding Issues None WG Last Call ?? Is it needed for an Inf RFC Ready to go now 4 Aug 2004 TrustCoM Project University of Salford

8 TrustCoM Project University of Salford
Other LDAP work V3 Profile 4 Aug 2004 TrustCoM Project University of Salford

Download ppt "LDAP PKI and PMI Schemas"

Similar presentations

Proxy Certificate Profile Douglas E. Engert Argonne National Laboratory 12/14/2001 COPYRIGHT STATUS: Documents authored by Argonne National.

Proxy Certificate Profile Douglas E. Engert Argonne National Laboratory 12/14/2001 COPYRIGHT STATUS: Documents authored by Argonne National.
A Profile for Trust Anchor Material for the Resource Certificate PKI Geoff Huston SIDR WG IETF 74.

A Profile for Trust Anchor Material for the Resource Certificate PKI Geoff Huston SIDR WG IETF 74.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E IEPG March 2000 APNIC Certificate Authority Status Report.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E IEPG March 2000 APNIC Certificate Authority Status Report.
ECS and LDAP Karen Krivaa Product Marketing Manager.

ECS and LDAP Karen Krivaa Product Marketing Manager.
Donkey Project Introduction and ideas around February 21, 2003 Yuri Demchenko.

Donkey Project Introduction and ideas around February 21, 2003 Yuri Demchenko.
Fed/Ed PKI 2008, June Subject Unique Identifier or Equivalent William A. Weems & Mark B. Jones Academic Technology U. Texas Health Science Center at Houston.

Fed/Ed PKI 2008, June Subject Unique Identifier or Equivalent William A. Weems & Mark B. Jones Academic Technology U. Texas Health Science Center at Houston.
Geneva, Switzerland, 2 June 2014 Introduction to public-key infrastructure (PKI) Erik Andersen, Q.11 Rapporteur, ITU-T Study Group 17 ITU Workshop.

Geneva, Switzerland, 2 June 2014 Introduction to public-key infrastructure (PKI) Erik Andersen, Q.11 Rapporteur, ITU-T Study Group 17 ITU Workshop.
Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.

Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.
MPKI Interoperability I-D ChangeLog from -00 to -01 Oct 27, 2003 Masaki SHIMAOKA SECOM Trust.net.

MPKI Interoperability I-D ChangeLog from -00 to -01 Oct 27, 2003 Masaki SHIMAOKA SECOM Trust.net.
Make Secure Information Sharing (SIS) Easy and an Reality C. Edward Chow, PI Osama Khaleel Bill Kretschmer C. Edward Chow, PI Osama Khaleel Bill Kretschmer.

Make Secure Information Sharing (SIS) Easy and an Reality C. Edward Chow, PI Osama Khaleel Bill Kretschmer C. Edward Chow, PI Osama Khaleel Bill Kretschmer.
Tim Polk, NIST wpolk@nist.gov PKI Overview Tim Polk, NIST wpolk@nist.gov.

Tim Polk, NIST PKI Overview Tim Polk, NIST
Wednesday, June 03, 2015 © 2001 TrueTrust Ltd1 PERMIS PMI David Chadwick.

Wednesday, June 03, 2015 © 2001 TrueTrust Ltd1 PERMIS PMI David Chadwick.
The EC PERMIS Project David Chadwick

The EC PERMIS Project David Chadwick
CS526 – Advanced Internet And Web Systems Semester Project Public Key Infrastructure (PKI) By Samatha Sudarshanam.

CS526 – Advanced Internet And Web Systems Semester Project Public Key Infrastructure (PKI) By Samatha Sudarshanam.
S/MIME Email and PKI Dartmouth College PKI Lab. What Is S/MIME? RFC 2633 (S/MIME Version 3)RFC 2633 Extensions to MIME Uses PKI certificates, keys, and.

S/MIME and PKI Dartmouth College PKI Lab. What Is S/MIME? RFC 2633 (S/MIME Version 3)RFC 2633 Extensions to MIME Uses PKI certificates, keys, and.
Application of Attribute Certificates in S/MIME Greg Colla & Michael Zolotarev Baltimore Technologies 47 th IETF Conference Adelaide, March 2000.

Application of Attribute Certificates in S/MIME Greg Colla & Michael Zolotarev Baltimore Technologies 47 th IETF Conference Adelaide, March 2000.
9/20/2000www.cren.net1 Root Key Cutting and Ceremony at MIT 11/17/99.

9/20/2000www.cren.net1 Root Key Cutting and Ceremony at MIT 11/17/99.
Using InCommon Client Certs for eduroam Jeff Hagley and Ryan Martin October 3 rd, 2011 Internet2 Fall Member Meeting.

Using InCommon Client Certs for eduroam Jeff Hagley and Ryan Martin October 3 rd, 2011 Internet2 Fall Member Meeting.
14 May 2002© 2000-02 TrueTrust Ltd1 Privilege Management in X.509(2000) David W Chadwick BSc PhD.

14 May 2002© TrueTrust Ltd1 Privilege Management in X.509(2000) David W Chadwick BSc PhD.
Online AAI José A. Montenegro GISUM Group Security Information Section University of Malaga Malaga (Spain) Web:

Online AAI José A. Montenegro GISUM Group Security Information Section University of Malaga Malaga (Spain) Web:

Similar presentations

Ads by Google