Presentation is loading. Please wait.

Presentation is loading. Please wait.

Chapter 14: Representing Identity Dr. Wayne Summers Department of Computer Science Columbus State University

Published byTobias Oliver Modified over 9 years ago

Similar presentations

Presentation on theme: "Chapter 14: Representing Identity Dr. Wayne Summers Department of Computer Science Columbus State University"— Presentation transcript:

1 Chapter 14: Representing Identity Dr. Wayne Summers Department of Computer Science Columbus State University Summers_wayne@colstate.edu http://csc.colstate.edu/summers

2 2 Representing Identity  Principal - unique entity (ex. File, user)  Identity - specifies a principal (ex. Filename, UID)  Authentication binds a principal to a representation of identity internal to the computer  Principals may be grouped into sets called groups  Role – type of group that ties membership to function

3 3 Naming and Certificates  Certificate – mechanism for binding cryptographic keys to identifiers –X.509v3 certificates use Distinguished Names: /O=Columbus State University/OU=Computer Science Dept/CN=Wayne Summers  CA authentication policy –describes the level of authentication required to identify the principal to whom the certificate is to be issued –Defines the way in which principals prove their identity  CA issuance policy describes the principals to whom the CA will issue certificates

4 4 Identity on the Web  Host Identity –Ethernet (MAC) address: 00-07-E9-72-B3-75 –IP address: 192.168.0.3 –Host name: jaring.colstate.edu  Static & Dynamic Identifiers –ARP (maps MAC and IP addresses) –DNS (maps IP addresses and host names) –DHCP – provides a dynamic IP address –NAT (Network Address Translation): router that translates between external and internal (private) addresses (e.g. 10.x.y.z)

5 5 Identity on the Web  State and Cookies –Cookie – token that contains information about the state of a transaction on a network name and associated value are encoded to represent the state Expiration field indicates when the cookie is valid Domain indicates for which domain the cookie is intended Path restricts the dissemination of the cookie within the domain Secure field restricts the use of the cookie to over SSL connections only

6 6 Anonymity on the Web  Anonymizer – site that hides the origin of the connection (similar to a proxy server)  Pseudo-anonymous remailer – remailer that replaces the originating e-mail address before it forwards the e-mail but keeps the mappings  Cyberpunk (type 1) remailer – strips the header before forwarding  Mixmaster (type 2) remailer- Cyperpunk remailer that only handles enciphered messages and pads messages to a fixed size before sending them

Download ppt "Chapter 14: Representing Identity Dr. Wayne Summers Department of Computer Science Columbus State University"

Similar presentations

CST 415 - Computer Networks NAT CST 415 4/10/2017 CST 415 - Computer Networks.

CST Computer Networks NAT CST 415 4/10/2017 CST Computer Networks.
Cs/ee 143 Communication Networks Chapter 6 Internetworking Text: Walrand & Parekh, 2010 Steven Low CMS, EE, Caltech.

Cs/ee 143 Communication Networks Chapter 6 Internetworking Text: Walrand & Parekh, 2010 Steven Low CMS, EE, Caltech.
CHAPTER 8: SECURITY IN COMPUTER NETWORKS Encryption Encryption Authentication Authentication E-Mail Security E-Mail Security Secure Sockets Layer Secure.

CHAPTER 8: SECURITY IN COMPUTER NETWORKS Encryption Encryption Authentication Authentication Security Security Secure Sockets Layer Secure.
Grid Security. Typical Grid Scenario Users Resources.

Grid Security. Typical Grid Scenario Users Resources.
Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.

Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.
CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.
CMSC 414 Computer (and Network) Security Lecture 15 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 15 Jonathan Katz.
CMSC 414 Computer (and Network) Security Lecture 16 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 16 Jonathan Katz.
Chapter Extension 7 How the Internet Works © 2008 Prentice Hall, Experiencing MIS, David Kroenke.

Chapter Extension 7 How the Internet Works © 2008 Prentice Hall, Experiencing MIS, David Kroenke.
November 1, 2004Introduction to Computer Security ©2004 Matt Bishop Slide #13-1 Chapter 14: Identity What is identity Multiple names for one thing Different.

November 1, 2004Introduction to Computer Security ©2004 Matt Bishop Slide #13-1 Chapter 14: Identity What is identity Multiple names for one thing Different.
Use of Kerberos-Issued Certificates at Fermilab Kerberos  PKI Translation Matt Crawford & Dane Skow Fermilab.

Use of Kerberos-Issued Certificates at Fermilab Kerberos  PKI Translation Matt Crawford & Dane Skow Fermilab.
CMSC 414 Computer and Network Security Lecture 20 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 20 Jonathan Katz.
1 Representing Identity CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute April 19, 2004.

1 Representing Identity CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute April 19, 2004.
1 Version 3.0 Module 9 TCP/IP Protocol and IP Addressing.

1 Version 3.0 Module 9 TCP/IP Protocol and IP Addressing.
July 1, 2004Computer Security: Art and Science ©2002-2004 Matt Bishop Slide #15-1 Chapter 14: Identity What is identity Multiple names for one thing Different.

July 1, 2004Computer Security: Art and Science © Matt Bishop Slide #15-1 Chapter 14: Identity What is identity Multiple names for one thing Different.
1 Chapter 13: Representing Identity What is identity Different contexts, environments Pseudonymity and anonymity.

1 Chapter 13: Representing Identity What is identity Different contexts, environments Pseudonymity and anonymity.
CCNA Guide to Cisco Networking Fundamentals Fourth Edition Chapter 9 Network Services.

CCNA Guide to Cisco Networking Fundamentals Fourth Edition Chapter 9 Network Services.
Access Control in IIS 6.0 Windows 2003 Server Prepared by- Shamima Rahman School of Science and Computer Engineering University of Houston - Clear Lake.

Access Control in IIS 6.0 Windows 2003 Server Prepared by- Shamima Rahman School of Science and Computer Engineering University of Houston - Clear Lake.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 1 v3.0 Module 9 TCP/IP Protocol Suite and IP Addressing.

1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 1 v3.0 Module 9 TCP/IP Protocol Suite and IP Addressing.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.

Similar presentations

Ads by Google