Upload File

haidong xue. part one: review of the knowledge in textbook goals, issues, solutions part two:...

  • Home
  • Documents
  • Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work
14
8.7 Summary of Distributed Computer Security Haidong Xue

Upload: phebe-mcdaniel

Post on 16-Dec-2015

212 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work

8.7 Summary of Distributed Computer

SecurityHaidong Xue

Page 2: Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work

Part One: Review of the Knowledge in Textbook goals, issues, solutions

Part Two: Current Application X509.V3

Part Three: Future Work

Content

Page 3: Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work

Part One: Review of the Knowledge in

TextbookgoalsIssuessolutions

Page 4: Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work

Goals: Secrecy Integrity Availability Reliability Safety

Review of the Knowledge in Textbook

Page 5: Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work

Issues: Access authorization discretionary access control mandatory access control Message Security cryptography Mutual Authentication cryptography

Review of the Knowledge in Textbook

Page 6: Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work

Cryptography: private key system public key system protocol: Kerberos, X.509

Review of the Knowledge in Textbook

Page 7: Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work

DESRSAMD5

Review of the Knowledge in Textbook

Page 8: Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work

Part Two: Current Application

X.509 V3

Page 9: Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work

Certificate ◦ Version ◦ Serial Number ◦ Signature Algorithm◦ Issuer ◦ Validity Subject ◦ Subject Public Key Info

Public Key Algorithm Subject Public Key

◦ Issuer Unique Identifier (Optional) ◦ Subject Unique Identifier (Optional) ◦ Extensions (Optional)

Certificate Signature Algorithm Certificate Signature

(http://en.wikipedia.org/wiki/X.509)

Part Two: Current Application

Page 10: Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work

Part Two: Current Application

CustomerKc-privateKb-public

BankKb-privateKc-public

1. A = RSA(Information, Kb-public)2. B = RSA(A, Kc-private)3. Send A,B

Page 11: Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work

Part Two: Current Application

CustomerKc-privateKb-public

BankKb-privateKc-public

1.Signature:(1). A = MD5(information)(2). B = RSA(A, Kc-private)

2. Encrypt:(1). Generate 128bits DES Key(2). C = DES(information, K-des)(3). D = RSA(K-des, Kb-public)

3. Send B, C, D

Page 12: Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work

Part Two: Current Application

CustomerKc-privateKb-publicKca-public

BankKb-privateKc-public

Certificate Authority:Kca-private

Kb-publicRSA( MD5(Kb-public), Kca-private)

Page 13: Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work

Part Three: Future Work

A new kind of private key

Page 14: Haidong Xue. Part One: Review of the Knowledge in Textbook goals, issues, solutions Part Two: Current Application X509.V3 Part Three: Future Work

Randy Chow, Theodore Johnson. Distributed Operating Systems& Algorithms. Addison Wesley, 1997

X.509. http://en.wikipedia.org/wiki/X.509 Public key certificate. http://

en.wikipedia.org/wiki/Digital_Certificate Introduction to the digital certificates. http://

hi.baidu.com/chenxu321/blog/item/783d100834aa50d862d986ca.html

Principles of digital certificates. http://blog.csdn.net/liukeforever/archive/2009/07/31/4396521.aspx

Reference

http://en.wikipedia.org/wiki/X.509
http://en.wikipedia.org/wiki/X.509
http://en.wikipedia.org/wiki/Digital_Certificate
http://en.wikipedia.org/wiki/Digital_Certificate
http://hi.baidu.com/chenxu321/blog/item/783d100834aa50d862d986ca.html
http://hi.baidu.com/chenxu321/blog/item/783d100834aa50d862d986ca.html
http://hi.baidu.com/chenxu321/blog/item/783d100834aa50d862d986ca.html

( ->ee) production in d+Au collisions at STAR Haidong Liu For the Collaboration

6 D B - h Supply World Haidong Gumdo Federation,

COEN 250 Cryptography, Certificates, PKI, X509 Standard

renaissancefest.comrenaissancefest.com/Assets/Weekly Inserts/2015/Week3Insert (lowre… · Haidong Gumdo You have never seen martial arts like this before! Visit Haidong Gumdo in

production in d+Au collisions at STAR Haidong Liu University of California, Davis For the STAR Collaboration

48102-002: Qinghai Haidong Urban-Rural Eco Development Project · 2020. 11. 3. · Project Number: 48102-002 . November 2020 . PRC: Qinghai Haidong Urban-Rural Eco Development Project

Module 4 Network & Application Security: Kerberos – X509 Authentication service – IP security Architecture – Secure socket layer – Electronic mail security

Public Key Infrastructure (X509 PKI) Presented by : Ali Fanian

Haidong Xue. Part One: Knowledge in Textbook Motivation, Models, Concepts, Algorithms Part Two: Recent Work Use the Mobile Agent and Include I/O Duplex

DNSSEC + x509 - OS3 · DNSSEC + x509 Leveraging DNSSEC ... Leibniz-Institut fuer Neurobiologie Magdeburg T-Systems SfR Hochschule fuer Wirtschaft und Recht Berlin ... Universitaet

CybOX Version 2.1.1. Part 94: X509 Certificate Objectdocs.oasis-open.org/cti/cybox/v2.1.1/csprd01/part94-x509...cybox-v2.1.1-csprd01-part94-x509-certificate 20 June 2016 Standards

How to Create SSL X509 Certificate

PRC: Qinghai Haidong Urban-Rural Eco Development Project

Public Key Infrastructure (X509 PKI) Presented by : Ali Fanian

2012 8th Australian Haidong Gumdo National Championship2012 8th Australian Haidong Gumdo National Championship and 1st Pre-Mulympics On 20 and 21 October 2012 Haidong Gumdo Australia,

Design and Analysis of Algorithms Greedy algorithms, coin changing problem Haidong Xue Summer 2012, at GSU

Detecting and Blocking Unauthorized Access in Wi-Fi Networks Haidong Xia and Jos é Brustoloni

SAP Host Agent x509 authentication

Modern Diffusers for Interior Design · 2020. 2. 28. · An experimental study was performed use of nozzles in high-performance buildings by Haidong Wang et al. (Haidong,2018,347-357)

Design and Analysis of Algorithms Binary search trees Haidong Xue Summer 2012, at GSU

IP 33-V03 Version 3 x509 End User Certificate Request Forms Package

EuSecWest 2008 - Abusing X509 Certificate Features (Alexander Klink, Cynops GmbH)

2012 8th Australian Haidong Gumdo National Championship

X509 CERTIFICATES AND HTTPS CONNECTIONS IN JAVAbgroza/teaching/SI/l8_https.pdf · X509 CERTIFICATES AND HTTPS CONNECTIONS IN JAVA In this laboratory we get used with X509 certificates

Design and Analysis of Algorithms Introduction to graphs, representations of a graph Haidong Xue Summer…

Identification Services as provided by directories (X.500 incl. X509)

Haidong Gumdo Grading - hillstkd.com.auHaidong Gumdo Grading Haidong Gumdo Grading O n Sunday 3rd April 23 students from Hill’s District Martial Arts completed their Haidong Gumdo

Haidong Xue Summer 2012, at GSU

Haidong Gumdo Gup Manual

Howto Aw- Local Radius With x509 Certificates RevB

GemStone/S 64 Bit X509-Secured GemStone Adminstration Guide · GemStone/S 64 Bit 3.5 X509-Secured GemStone Adminstration Guide 2 GemTalk Systems INTELLECTUAL PROPERTY OWNERSHIP This

NIST Recommendation for X509 PVMs

Design and Analysis of Algorithms Introduction to Divide-and-conquer Haidong Xue Summer 2012, at GSU

Newsletter July 2012 - Taekwondo & Haidong Gumdo · New Haidong Gumdo classes Term 2 grading photos Haidong Gumdo news from Korea Term 3 Sparring Workshop Huge congratulations to

Deploying the Cisco ACE XML Gateway · X509 certificates SAML statements Message Integrity Integrity of all or part of a message Builds on XML-Signature Supports multiple and overlapping