Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cybersecurity Computer Science Innovations, LLC. Certificates Generate Public and Private Key Sign the Public Key with a CA Private Key Append the Cert.

Published byMabel Wright Modified over 9 years ago

Similar presentations

Presentation on theme: "Cybersecurity Computer Science Innovations, LLC. Certificates Generate Public and Private Key Sign the Public Key with a CA Private Key Append the Cert."— Presentation transcript:

1 Cybersecurity Computer Science Innovations, LLC

2 Certificates Generate Public and Private Key Sign the Public Key with a CA Private Key Append the Cert to the Private Key

3 Lets See a Cert In P12 format they are Binary, but we can use openSSL to convert to ASCII Here is the command: openssl pkcs12 -in Default\ Device.p12 -out certfile2.pem - passin pass:b298b12b-3584-419d- b3c9-f6f639b5de66

4 Let'sSee a Cert Part 2 -----BEGIN ENCRYPTED PRIVATE KEY----- MIICxjBABgkqhkiG9w0BBQ0wMzAbBgkqhkiG 9w0BBQwwDgQIRVkHt5ym+dYCAggA MBQGCCqGSIb3DQMHBAglTFlPoHcELQSC AoCLMCzUhF9ezDFwTiM5jsgRJDLXcfyK tcj6zRLc40QKu/hUjMj5kF+T52qwr ….. …. -----BEGIN CERTIFICATE----- MIIDaDCCAlCgAwIBAgIGAUwFJmdtMA0GCS qGSIb3DQEBBQUAMHMxCzAJBgNVBAYT AlVTMQswCQYDVQQIDAJNRDEPMA0GA1U ECgwGU3RyZWl0MQ8wDQYDVQQLDAZTdH Jl aXQxJDAiBgkqhkiG

5 So Let's Talk About the Cert We started with a public key and a private key. We also started with another private key called a “Certificate Authority” private key We sign the public key with the Certificate Authority Private key making it a certificate. We append the Private Key and the Certificate create a P12 certificate.

6 How is it Used Client: Send Cert Server: Cert Received And unlocked with CA Private Key Leaving the public key Client Sends Private Key Server Receives the Private Key and makes sure that it Associated with the Public Key from the Previous Step

7 This is 2-Way SSL Uses Asymmetric Encryption Is uses as part of an Identity Assertion The Certificate is actually a public key private key pair. The Public Key is signed with the Certificate Authority private key (CA).

8 The CA The CA is the overriding private key for 2- way SSL and cannot be given out. It must be protected. It ends up in a truststore because the truststore is used in the 2-way SSL Handshake Keystores are used for 1 way SSL Truststores are used for 2 way SSL

Download ppt "Cybersecurity Computer Science Innovations, LLC. Certificates Generate Public and Private Key Sign the Public Key with a CA Private Key Append the Cert."

Similar presentations

Introduction of Grid Security

Introduction of Grid Security
ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.

ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.
Network Security: Lab#2 J. H. Wang Apr. 28, 2011.

Network Security: Lab#2 J. H. Wang Apr. 28, 2011.
SSL Implementation Guide Onno W. Purbo

SSL Implementation Guide Onno W. Purbo
Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.

Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.
Cryptography Chapter 7 Part 4 Pages 833 to 874. PKI Public Key Infrastructure Framework for Public Key Cryptography and for Secret key exchange.

Cryptography Chapter 7 Part 4 Pages 833 to 874. PKI Public Key Infrastructure Framework for Public Key Cryptography and for Secret key exchange.
Presented by Fengmei Zou Date: Feb. 10, 2000 The Secure Sockets Layer (SSL) Protocol.

Presented by Fengmei Zou Date: Feb. 10, 2000 The Secure Sockets Layer (SSL) Protocol.
CSE 461 Section. “Transport Layer Security” protocol Standard protocol for encrypting Internet traffic Previously known as SSL (Secure Sockets Layer),

CSE 461 Section. “Transport Layer Security” protocol Standard protocol for encrypting Internet traffic Previously known as SSL (Secure Sockets Layer),
Mar 19, 2002Mårten Trolin1 This lecture On the assignment Certificates and key management SSL/TLS –Introduction –Phases –Commands.

Mar 19, 2002Mårten Trolin1 This lecture On the assignment Certificates and key management SSL/TLS –Introduction –Phases –Commands.
Apr 2, 2002Mårten Trolin1 Previous lecture On the assignment Certificates and key management –Obtaining a certificate –Verifying a certificate –Certificate.

Apr 2, 2002Mårten Trolin1 Previous lecture On the assignment Certificates and key management –Obtaining a certificate –Verifying a certificate –Certificate.
Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.

Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.
An Introduction to Security Concepts and Public Key Infrastructure (PKI) Mary Thompson.

An Introduction to Security Concepts and Public Key Infrastructure (PKI) Mary Thompson.
Copyright Justin Klein Keane InfoSec Training Encryption.

Copyright Justin Klein Keane InfoSec Training Encryption.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
X.509 at the University of Michigan CIC-RPG Meeting June 7, 1999 Kevin Coffman Bill Doster

X.509 at the University of Michigan CIC-RPG Meeting June 7, 1999 Kevin Coffman Bill Doster
Mar 4, 2003Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities.

Mar 4, 2003Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities.
Signing and Encrypting Email With the Thawte Web of Trust CSU Professional Development Institute January 8, 2009 Steve Lovaas.

Signing and Encrypting With the Thawte Web of Trust CSU Professional Development Institute January 8, 2009 Steve Lovaas.
Certificates, SSL and IPsec Ahmed Muaydh Sara Bin Saif Shi-Jey Chou Advisor:Dr. Leszek Lilien.

Certificates, SSL and IPsec Ahmed Muaydh Sara Bin Saif Shi-Jey Chou Advisor:Dr. Leszek Lilien.
Cryptography and Network Security Chapter 15 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 15 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
Secure Sockets SSL/TLS ICW: Lecture 6 Tom Chothia.

Secure Sockets SSL/TLS ICW: Lecture 6 Tom Chothia.

Similar presentations

Ads by Google