Presentation is loading. Please wait.

Presentation is loading. Please wait.

January 6, 1999Common Solutions Group1 X.509 University Michael R. Gettes Princeton University Computing & Information Technology.

Published byCedric Tweed Modified over 9 years ago

Similar presentations

Presentation on theme: "January 6, 1999Common Solutions Group1 X.509 University Michael R. Gettes Princeton University Computing & Information Technology."— Presentation transcript:

1 January 6, 1999Common Solutions Group1 X.509 Certificates @Princeton University Michael R. Gettes Princeton University Computing & Information Technology Collaboration Svcs Group (CSG), Mgr gettes@Princeton.EDU

2 January 6, 1999Common Solutions Group2 Collaboration Svcs Group (CSG) E-mail and Mailing Lists Directory Services (LDAP, CSO, NIS) NetNews Security Infra (Kerberos, Certificates) Document Management (print/fax, imaging) Calendaring Development and SysAdmin functions

3 January 6, 1999Common Solutions Group3 X.509 Certificates @ Princeton University Summer 1997 –Local Considerations –Entrust v. Others –Netscape Certificate Server –Secure E-Mail using Certificates –Servers and Users Decision on University Policy Future?

4 January 6, 1999Common Solutions Group4 Summer 1997 What MIT had done as seen at Spring CSG! How to do it for Princeton? Investigation of current offerings –Entrust vs. Verisign vs. RollYourOwn Inc. Entrust and others –Cost is prohibitive ($700,000) Netscape Certificate Server

5 January 6, 1999Common Solutions Group5 Netscape Certificate Server https://ca.Princeton.EDU Informix Database Management Easy Administrative Interface VGI for automatic verification –Kerberos authentication (SSL protected) IE poorly supported until recently LDAP Integration but No Key Escrow FREE!!!(at the time)

6 January 6, 1999Common Solutions Group6 Secure E-mail User Impact With Netscape and IE/Outlook –Sophisticated Users could endure –Size of messages –Impact on University business SSL for Servers –That’s the easy part

7 January 6, 1999Common Solutions Group7 University Policy February, 1998 –Cabinet issues policy regarding key escrow –University business must be able to recover critical communications and transactions –CIT cannot support secure e-mail until key escrow is available –Recommendation to departments as well

8 January 6, 1999Common Solutions Group8 Future? Netscape Certificate Server –Will support Key Escrow –How much will it cost? (< $1/certificate) –Will users be able to use it? –To PGP or not to PGP Cost is the driving force –Entrust is makes deal for 11 million certs for about $1.1 million (with Canadian gov’t)???

Download ppt "January 6, 1999Common Solutions Group1 X.509 University Michael R. Gettes Princeton University Computing & Information Technology."

Similar presentations

Easy-to-access Forkie has developed a suite of web-based applications specifically for sports administrators, committee members and team managers – called.

Easy-to-access Forkie has developed a suite of web-based applications specifically for sports administrators, committee members and team managers – called.
DIGIDOC A web based tool to Manage Documents. System Overview DigiDoc is a web-based customizable, integrated solution for Business Process Management.

DIGIDOC A web based tool to Manage Documents. System Overview DigiDoc is a web-based customizable, integrated solution for Business Process Management.
Grid Computing, B. Wilkinson, 20045a.1 Security Continued.

Grid Computing, B. Wilkinson, 20045a.1 Security Continued.
Extending ForeFront beyond the limit www.AGATSolutions.com TMGUAG ISAIAG AG Security Suite.

Extending ForeFront beyond the limit TMGUAG ISAIAG AG Security Suite.
Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.

Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.
Cryptography and Authentication Lab ECE4112 Group4 Joel Davis Scott Allen Quinn.

Cryptography and Authentication Lab ECE4112 Group4 Joel Davis Scott Allen Quinn.
Password?. Project CLASP: Common Login and Access rights across Services Plan

Password?. Project CLASP: Common Login and Access rights across Services Plan
PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.

PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.
PKI Georgetown University or Whaassuuuup PKI? Michael R. Gettes Lead Application Systems Integrator “LASI”

PKI Georgetown University or Whaassuuuup PKI? Michael R. Gettes Lead Application Systems Integrator “LASI”
Password?. Project CLASP: Common Login and Access rights across Services Plan

Password?. Project CLASP: Common Login and Access rights across Services Plan
CNI Fall 1998 Access Management Requirements and Approaches Joan Gargano California Digital Library

CNI Fall 1998 Access Management Requirements and Approaches Joan Gargano California Digital Library
Oracle Beehive Vivek Pavle Orabyte LLC www.orabyte.com Orabyte.

Oracle Beehive Vivek Pavle Orabyte LLC Orabyte.
Public Key Infrastructure at the University of Pittsburgh Robert F. Pack, Vice Provost Academic Planning and Resources Management March 27, 2000 CNI Spring.

Public Key Infrastructure at the University of Pittsburgh Robert F. Pack, Vice Provost Academic Planning and Resources Management March 27, 2000 CNI Spring.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
The Sherlock Project Purdue University, Department of Computer Sciences Sponsored by Tellabs, Inc. Doug Clark - Group Leader Tobey Pasheilich Raj Talwar.

The Sherlock Project Purdue University, Department of Computer Sciences Sponsored by Tellabs, Inc. Doug Clark - Group Leader Tobey Pasheilich Raj Talwar.
Web Services Security Multimedia Information Engineering Lab. Yoon-Sik Yoo.

Web Services Security Multimedia Information Engineering Lab. Yoon-Sik Yoo.
Polytechnic University of Tirana Faculty of Information Technology Computer Engineering Department Identification of on-line users and Digital Signature.

Polytechnic University of Tirana Faculty of Information Technology Computer Engineering Department Identification of on-line users and Digital Signature.
X.509 at the University of Michigan CIC-RPG Meeting June 7, 1999 Kevin Coffman Bill Doster

X.509 at the University of Michigan CIC-RPG Meeting June 7, 1999 Kevin Coffman Bill Doster
Use of Kerberos-Issued Certificates at Fermilab Kerberos  PKI Translation Matt Crawford & Dane Skow Fermilab.

Use of Kerberos-Issued Certificates at Fermilab Kerberos  PKI Translation Matt Crawford & Dane Skow Fermilab.
User studies. Why user studies? How do we know security and privacy solutions are really usable? Have to observe users! –you may be surprised by what.

User studies. Why user studies? How do we know security and privacy solutions are really usable? Have to observe users! –you may be surprised by what.

Similar presentations

Ads by Google