Presentation is loading. Please wait.

Presentation is loading. Please wait.

Trusted Archive Protocol (TAP) Carl Wallace

Published byMyra Emmeline Goodman Modified over 9 years ago

Similar presentations

Presentation on theme: "Trusted Archive Protocol (TAP) Carl Wallace"— Presentation transcript:

1 Trusted Archive Protocol (TAP) Carl Wallace cwallace@orionsec.com

2 What is TAP? A specification that defines: Data structures for representation of archived data and artifacts of the archive process Transactions for interacting with a Trusted Archive Authority (TAA) Service that preserves data via periodic timestamp refresh Transactions include Submission of data for archiving Retrieval of archived data and evidence Deletion of archived data

3 TAP Goals Data integrity preservation in perpetuity Achieved through timely timestamp refresh Preservation of relevant cryptographic data Data format and data validity agnostic Any type of data (cryptographic or non- cryptographic) can be preserved “Valid” or “invalid” data can be preserved Support additional, optional server-side operations Data validation (evidence verification) Certificate path processing (evidence collection) Etc. Support non-TAP-aware clients for submission

4 TAP Terminology Archived data Data submitted for archiving (with optional type information) Target of submission operation Archive token Generated by TAA and returned to the submitter to facilitate future retrieval (essentially a canned query) Includes a timestamp, submitter name, tracking information Suitable for inclusion in documents as an unsigned attribute Result of submission operation ArchivedData ::= SEQUENCE { type ArchivedDataType OPTIONAL, data OCTET STRING } ArchiveToken ::= ContentInfo -- content type: id-tap-archiveToken -- content: ArchiveTokenData ArchiveTokenData ::= SEQUENCE { submitterName GeneralName, timestamp TimeStampToken, //rfc3161 curTime GeneralizedTime, trackingInfo TrackingInfos OPTIONAL }

5 TAP Terminology (continued) Archive record Nested structure containing the timestamp history (innermost layer is the original timestamp) Each layer can be self-contained for verification purposes Maintained by the TAA ArchiveRecord ::= ContentInfo -- content type: id-tap-archiveRecordData -- or id-signedData (id-ct-TSTInfo) -- content: ArchiveRecordData or SignedData (TSTInfo) ArchiveRecordData ::= SEQUENCE { timestampedData TimeStampedData, timestamp TimeStampToken } TimeStampedData ::= SEQUENCE { prevArchRecord ContentInfo, -- previous record messageImprint MessageImprint -- hash archived data }

6 TAP Terminology (continued) Archive package Minimally includes archive token, archive record and archived data Result of retrieval operation ArchivePackage ::= SEQUENCE { archiveToken ArchiveToken, packageData [0] ArchivePackageData OPTIONAL, pollReference [1] OCTET STRING OPTIONAL } ArchivePackageData ::= SEQUENCE { digestAlgorithms DigestAlgorithmIdentifiers, policy OBJECT IDENTIFIER OPTIONAL, archiveRecord ArchiveRecord, cryptoInfos [0] CryptoInfos OPTIONAL, archivedData ArchivedData }

7 TAA Services Required services Archived data preservation Archive token generation (including timestamp acquisition) Periodic refresh of the archive record Preservation of PKI information for verification of archive record (i.e. certs, CRLs, OCSP responses, trust anchors, etc.) Optional services Historical trust anchor preservation (i.e. give me trust anchors known at time X) To permit operation of one TAA for data and another TAA for trust roots PKI information collection and/or validation (SCVP) Cryptographic message validation (DVCS)

8 TAP Transactions All rely upon CMS Requests may optionally be authenticated Deletion requests MUST be authenticated All responses are signed using SignedData CMS messages Only TAA-generated signatures are those on response messages All TAP requests/responses include an optional archive controls field to support nesting of related requests Type/value structure a la extensions, attributes, etc. Field is request/response oriented Intended to convey nonce, SCVP, DVCS, etc.

9 TAP Submission 1) Submission request -submitter’s name -archived data -policy (optional) -archive controls (optional) Submission client TAA 3) Submission response -status -archive token -archive controls (optional) 2) TAA Processing -Check authentication and authorization (optional) -Process archive controls, if present -Obtain (or generate) a timestamp for archived data -Create archive token and archive record -Store archived data and archive record -Generate response containing archive token and archive control responses, if necessary -Sign and send response 4) Client processing -Verify TAA signature on response -Verify timestamp from archive token - Store archive token for future use

10 TAA Archive Record Refresh Following submission, TAA is responsible for maintaining archive records without further involvement of the submitter Periodically the TAA will obtain a new timestamp for each archive record - New timestamp covers the previous archive record plus a hash of the archived data generated using a current hashing algorithm - Each layer should be self-contained with regard to certificates, CRLs, etc. - Frequency of refresh operations is dictated by TSA certificate validity period and confidence in current cryptographic algorithms - Structure grows over time

11 TAP Retrieval 1) Retrieval request -requestor’s name -archive token (or info to initiate a search) -archive controls (optional) Retrieval client TAA 3) Retrieval response -status -archive package -archive controls (optional) 2) TAA Processing -Check authentication and authorization (optional) -Process archive controls, if present -Retrieve archive record and archived data -Create archive package containing archived data, archive token and archive record -Generate response containing archive package and archive control responses, if necessary -Sign and send response 4) Client processing -Verify TAA signature on response -Verify archive record (including all timestamps)

12 TAP Deletion* 1) Deletion request -requestor’s name -archive token (or info to initiate a search) -archive controls (optional) Deletion client TAA 3) Deletion response -status -archive package -archive controls (optional) 2) TAA Processing -Authenticates requestor -Check authorization (optional) -Process archive controls, if present -Delete archive record and archived data -Generate response containing archive token and archive control responses, if necessary -Sign and send response 4) Client processing -Verify TAA signature on response *Deletion could simply be termination of future refresh operations not physical deletion

13 What’s Next? Originally submitted as a PKIX draft Topic not accepted as a WG task Draft expired in August Cannibalize, revise or discard -“Long-Term Archive Architecture” draft posted to LTANS web site describes some recommended updates - Specifically cites limited support for searching an archive; no specified means for including metadata, e.g. filename; no means to specify a preservation period, i.e. point in time after which data need no longer be preserved

Download ppt "Trusted Archive Protocol (TAP) Carl Wallace"

Similar presentations

Reporting Workflow Rita Noumeir, Ph.D. IHE Technical Committee.

Reporting Workflow Rita Noumeir, Ph.D. IHE Technical Committee.
Chapter 14 – Authentication Applications

Chapter 14 – Authentication Applications
Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E IEPG March 2000 APNIC Certificate Authority Status Report.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E IEPG March 2000 APNIC Certificate Authority Status Report.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.

PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.
Chapter 14 From Cryptography and Network Security Fourth Edition written by William Stallings, and Lecture slides by Lawrie Brown, the Australian Defence.

Chapter 14 From Cryptography and Network Security Fourth Edition written by William Stallings, and Lecture slides by Lawrie Brown, the Australian Defence.
Authentication Cristian Solano. Cryptography is the science of using mathematics to encrypt and decrypt data. Public Key Cryptography –Problems with key.

Authentication Cristian Solano. Cryptography is the science of using mathematics to encrypt and decrypt data. Public Key Cryptography –Problems with key.
Electronic signature - simply, long-term, safely and in accordance with Commission Decision 2011/130/EU Peter Rybár National Security Authority Information.

Electronic signature - simply, long-term, safely and in accordance with Commission Decision 2011/130/EU Peter Rybár National Security Authority Information.
M.Sc. Hrvoje Brzica Boris Herceg, MBA Financial Agency – FINA Ph.D. Hrvoje Stancic, assoc. prof. Faculty of Humanities and Social Sciences Long-term Preservation.

M.Sc. Hrvoje Brzica Boris Herceg, MBA Financial Agency – FINA Ph.D. Hrvoje Stancic, assoc. prof. Faculty of Humanities and Social Sciences Long-term Preservation.
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.

Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.
Apr 2, 2002Mårten Trolin1 Previous lecture On the assignment Certificates and key management –Obtaining a certificate –Verifying a certificate –Certificate.

Apr 2, 2002Mårten Trolin1 Previous lecture On the assignment Certificates and key management –Obtaining a certificate –Verifying a certificate –Certificate.
Resource PKI: Certificate Policy & Certification Practice Statement Dr. Stephen Kent Chief Scientist - Information Security.

Resource PKI: Certificate Policy & Certification Practice Statement Dr. Stephen Kent Chief Scientist - Information Security.
November 1, 2006Sarah Wahl / Graduate Student UCCS1 Public Key Infrastructure By Sarah Wahl.

November 1, 2006Sarah Wahl / Graduate Student UCCS1 Public Key Infrastructure By Sarah Wahl.
Resource Certificate Profile SIDR WG Meeting IETF 66, July 2006 draft-ietf-sidr-res-certs-01 Geoff Huston Rob Loomans George Michaelson.

Resource Certificate Profile SIDR WG Meeting IETF 66, July 2006 draft-ietf-sidr-res-certs-01 Geoff Huston Rob Loomans George Michaelson.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E 36th RIPE Meeting Budapest 2000 APNIC Certificate Authority Status Report.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E 36th RIPE Meeting Budapest 2000 APNIC Certificate Authority Status Report.

Similar presentations

Ads by Google