Presentation is loading. Please wait.

Presentation is loading. Please wait.

PKI2001(TIFR,Mumbai) PGP Pretty Good Privacy Designed for secure transfer of e-mails with off-line or out of band key distribution.

Published byJeffry Fox Modified over 9 years ago

Similar presentations

Presentation on theme: "PKI2001(TIFR,Mumbai) PGP Pretty Good Privacy Designed for secure transfer of e-mails with off-line or out of band key distribution."— Presentation transcript:

1 PKI2001(TIFR,Mumbai) PGP Pretty Good Privacy Designed for secure transfer of e-mails with off-line or out of band key distribution.

2 PKI2001(TIFR,Mumbai) Introduction n PGP users maintain their own list of public keys, called keyring. n PGP allows users to exchange keyrings. n Each user fully trusts the others they meet outside of the Internet.

3 PKI2001(TIFR,Mumbai) One Simple Example

4 PKI2001(TIFR,Mumbai) Alice Bob Chris Elvis Alice Bob Chris Elvis Bob Chris Bob Elvis Bob  Chris Elvis Alice  Bob Chris Elvis

5 PKI2001(TIFR,Mumbai) Web Of Trust n By Bob  Chris, Bob and Chris exchanged their keyrings, and they fully trust each other. n But what about Chris  Elvis, when “Elvis” is an impersonator of real Elvis ? n This means Chris has been fooled and ultimately Bob and Alice too. Since Alice  Bob

6 PKI2001(TIFR,Mumbai) Individual Trust Policy n PGP allows the user to assign one of four following attributes while adding a new key to the keyring a Completely trusted a Marginally trusted a Untrusted a Unknown.

7 PKI2001(TIFR,Mumbai) n The attributes attached with each key helps the keyring owner to decide how much trust he should put in the key. n The keyring owner can tune PGP’s criteria for accepting key. n For example, one can tell PGP to accept a key if it has been signed by F 2 completely trusted keys or F at least 3 marginally trusted keys, F 1 completely and 2 marginally trusted keys etc.

8 PKI2001(TIFR,Mumbai)

9

10

11 Conclusion “In God we trust, all others pay cash” n A cliché “In God we trust, all others pay cash” n PGP does have very strong security if the keyring owners have checked the trust relation between the users contained in the keyring very strictly but it is a matter of trust at last. n If a single user cheats to other who puts full faith in him; the whole web faces the serious security threat. n So it is useful for a small domain of trusted users.

Download ppt "PKI2001(TIFR,Mumbai) PGP Pretty Good Privacy Designed for secure transfer of e-mails with off-line or out of band key distribution."

Similar presentations

Security Issues in Mobile Code Systems David M.Chess, High Integrity Computing Lab, IBM T.J. Watson Research Center Hawthorne, NY, USA Mobile code systems.

Security Issues in Mobile Code Systems David M.Chess, High Integrity Computing Lab, IBM T.J. Watson Research Center Hawthorne, NY, USA Mobile code systems.
Key Management. Shared Key Exchange Problem How do Alice and Bob exchange a shared secret? Offline – Doesnt scale Using public key cryptography (possible)

Key Management. Shared Key Exchange Problem How do Alice and Bob exchange a shared secret? Offline – Doesnt scale Using public key cryptography (possible)
Email Security 1. email is one of the most widely used and regarded network services currently message contents are not secure may be inspected either.

Security 1. is one of the most widely used and regarded network services currently message contents are not secure may be inspected either.
Information Security & Cryptographic Principles. Infosec and Cryptography Subjects / Topics : 1. Introduction to computer cryptography 1. Introduction.

Information Security & Cryptographic Principles. Infosec and Cryptography Subjects / Topics : 1. Introduction to computer cryptography 1. Introduction.
PGP Overview 2004/11/30 Information-Center meeting peterkim.

PGP Overview 2004/11/30 Information-Center meeting peterkim.
Lecture 5: Email security: PGP Anish Arora CIS694K Introduction to Network Security.

Lecture 5: security: PGP Anish Arora CIS694K Introduction to Network Security.
CS470, A.SelcukE-mail Security1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.Selcuk Security1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
Public Key Infrastructure (PKI) Jerad Bates University of Maryland, Baltimore County December 2007.

Public Key Infrastructure (PKI) Jerad Bates University of Maryland, Baltimore County December 2007.
 Authorization via symmetric crypto  Key exchange o Using asymmetric crypto o Using symmetric crypto with KDC  KDC shares a key with every participant.

 Authorization via symmetric crypto  Key exchange o Using asymmetric crypto o Using symmetric crypto with KDC  KDC shares a key with every participant.
Apr 9, 2002Mårten Trolin1 Previous lecture TLS details –Phases Handshake Securing messages –What the messages contain –Authentication The second assignment.

Apr 9, 2002Mårten Trolin1 Previous lecture TLS details –Phases Handshake Securing messages –What the messages contain –Authentication The second assignment.
WSU A Symphony in Four Movements. A Century of Controlled Flight.

WSU A Symphony in Four Movements. A Century of Controlled Flight.
... Jesús Almansa and Marco Carbone 4th April 2002 { jfa,

... Jesús Almansa and Marco Carbone 4th April 2002 { jfa,
Using Digital Credentials On The World-Wide Web M. Winslett.

Using Digital Credentials On The World-Wide Web M. Winslett.
21 June 2006Copyright 2006 University of Kent1 Delegation of Authority (DyVOSE project) David Chadwick University of Kent.

21 June 2006Copyright 2006 University of Kent1 Delegation of Authority (DyVOSE project) David Chadwick University of Kent.
Optimistic Synchronous Multi-Party Contract Signing N. Asokan, Baum-Waidner, M. Schunter, M. Waidner Presented By Uday Nayak Advisor: Chris Lynch.

Optimistic Synchronous Multi-Party Contract Signing N. Asokan, Baum-Waidner, M. Schunter, M. Waidner Presented By Uday Nayak Advisor: Chris Lynch.
Introduction To Windows NT ® Server And Internet Information Server.

Introduction To Windows NT ® Server And Internet Information Server.
Elias M. Awad Third Edition ELECTRONIC COMMERCE From Vision to Fulfillment 13-1© 2007 Prentice-Hall, Inc ELC 200 Day 23.

Elias M. Awad Third Edition ELECTRONIC COMMERCE From Vision to Fulfillment 13-1© 2007 Prentice-Hall, Inc ELC 200 Day 23.
Cryptography and Network Security Chapter 15 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 15 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
Email Security Jonathan Calazan December 12, 2005.

Security Jonathan Calazan December 12, 2005.
By Xiaoheng Wu1 Cryptography Tool PGP. 2 Introduction Why PGP? History of PGP –First version released by Philip Zimmermann in 1991 Politics issue (Senate.

By Xiaoheng Wu1 Cryptography Tool PGP. 2 Introduction Why PGP? History of PGP –First version released by Philip Zimmermann in 1991 Politics issue (Senate.

Similar presentations

Ads by Google