Upload File

pki trust root concepts acp working group – i april 2009

  • Home
  • Documents
  • PKI Trust Root Concepts ACP Working Group – I April 2009
7
PKI Trust Root Concepts ACP Working Group – I April 2009

Upload: mia-hodges

Post on 27-Mar-2015

215 views

Category:

Documents


1 download

Report

TRANSCRIPT

Page 1: PKI Trust Root Concepts ACP Working Group – I April 2009

PKI Trust Root Concepts

ACP Working Group – I

April 2009

Page 2: PKI Trust Root Concepts ACP Working Group – I April 2009

Root Concepts

• The "global trust root" concept for the NextGEN that has been developed from piece parts of several groups and that it has been conceptually validated with PKI industry leaders.

• The concept is to create three unique individually signed digital components as follows that taken together should provide an internationally acceptable authentication and identification for the next generation of global air traffic management systems.

Page 3: PKI Trust Root Concepts ACP Working Group – I April 2009

Trust Root Construction

1. Aircraft manufacturer creates the aircraft digital identity similar to that proposed in the “Aircraft Digital Identity” paper and signs the "aircraft digital identity" modules as conceptually presented in the Airbus ARTIST presentation.

Page 4: PKI Trust Root Concepts ACP Working Group – I April 2009

Trust Root Construction

2. ICAO assign the aircraft it's 24 bit ID (maybe its ATN DNS name) and its network addresses then digitally signs across the ADI and the manufacturer signature and their own designators.

Page 5: PKI Trust Root Concepts ACP Working Group – I April 2009

Trust Root Construction

3 The airline assigns the aircraft it tail numbers and other designators (maybe DNS names) then digitally signs across manufacturers ADI and signature and the ICAO's designators and signatures and its own designators.

This completes the construction of the three part trust root. To compromise the aircraft’s digital identity, the three digital signatures from completely independent entities must all be comprised simultaneously.

Page 6: PKI Trust Root Concepts ACP Working Group – I April 2009

Trust Root Use

The airline then applies to the various NSPs through whose airspace they will operate the aircraft.

The NSPs could then accept the aircraft “trust root” as it exists or may individually sign across all the above identities and designators as the final step.

If each NSP requires their signature on the aircraft, it then ends up with the aircraft carrying a “digital key ring" of certificates with one for each NSP in whose airspace they will operate.

Page 7: PKI Trust Root Concepts ACP Working Group – I April 2009

Airline/Operator Digital Signature

Airline/Operator Aircraft Designations

ICAO Digital Signature

ICAO Aircraft Designators

Manufacturer’s Signature

Root Construction

Aircraft Digital ID


Instructions for Importing the DoD CA PKI Root Certificate ... DoD PKI server certificate, ... 1. In Internet Explorer, go to . If you have never done

DoD Public Key Infrastructure (PKI) Partner PKI ...jitc.fhu.disa.mil/projects/pki/documents/DoD_PKI_Interoperability... · UNCLASSIFIED DoD Public Key Infrastructure (PKI) Partner

ACP USER MANUAL For ACP, Select ‘Order Generation→ACP→ …

ACP-8-4141-2008 | ACP

Certification Practice Statement of the UNIPER PKI · 2020-03-27 · 1.0 2014-02-01 Initial version – based on D-TRUST Root PKI v. 1.9 1.1 2016-10-10 Change to EN 319 411-1 1.2

D-TRUST-Root PKI Certificate Policy · Publication date 30.10.2013 Effective date 30.10.2013 D-TRUST-Root PKI Certificate Policy Version 1.8_EN A word of caution: It is always the

ACP-18-13947-2018 | ACP - ACP - Recent

PKI Robin Burke ECT 582. Outline Discussion Review The need for PKI PKI hierarchical PKI networked PKI bridging Certificate policies rationale examples

PKI Setting

IoT: Taking PKI Where No PKI Has Gone Before

Swiss Government PKI - Root CA I · Swiss Government Root CA I CP/CPS V1.0 1/59 EFD / Swiss_Government_Root_CA_I_CP_CPS_EN_v21.docx Swiss Government PKI - Root CA I . Certificate

Certification Practice Statement of the D-TRUST Root PKI€¦ · Adaptation of the use license to “Creative Commons Attribution” Adaption with Mozilla Root Store Policy 2.5 2.3

Certification Practice Statement of the D-TRUST Root PKI · The PKI described here features a multi-level hierarchy. Figs. 1 and 2 show PKI set-ups for qualified Figs. 1 and 2 show

PKI Interoperability

PKI - articol

Reflection PKI Services Manager User Guide - …docs.attachmate.com/reflection/pki/1.3sp1/pki-manager-user-guide.pdfTest Certificate Dialog Box ... 8 Reflection PKI Services Manager

Phosphatase activities (ACP, ALP) in agroecosystem soilspub.epsilon.slu.se/286/1/Agraria_396_Docutech_Tryckfil.pdf · phosphatase activity in the root system of various species and

Root Certificate Authority Backup Considerations Certificate Authority Backup Considerations Introduction: Microsoft Certificate Authority is an Enterprise PKI solution deployed widely

ACP-14-12251-2014 | ACP

ACP-10-5179-2010 | ACP

ACP-16-13231-2016 | ACP

PKI Thesis

Cisco IOS PKI Overview Understanding and Planning a PKI · Cisco IOS PKI Overview Understanding and Planning a PKI CiscoIOSpublickeyinfrastructure(PKI)providescertificatemanagementtosupportsecurityprotocols

D-TRUST-Root PKI Certificate Policy€¦ · Publication date 25.09.2010 Effective date 25.09.2010 . D-TRUST-Root PKI . Certificate Policy. Version . 1.4_EN . A word of caution: It

Swiss Government PKI - Root CA I - CP CPS EN · Swiss Government PKI - Root CA I - CP_CPS EN NOT CLASSIFIED Status: Freigegeben Version: V2.8, 15.05.2019 3/78 References Identifier

AllSeen Summit 2015: IoT: Taking PKI Where No PKI … · AllSeen Summit 2015: IoT: Taking PKI Where No PKI Has Gone Before Presented by: Scott Rea – DigiCert Sr. PKI Architect

Apple Certificate Policy v3...Apple Inc. (“Apple”) established the Apple Root Certification Authority (“Apple Root CA”) and the Apple PKI in support of the generation, issuance,

Swiss Government Root CA II CP/CPS · Swiss Government Root CA II CP/CPS 1/64 EFD / CPS_2_16_756_1_17_3_21_1.docx End-user Certificates Swiss Government PKI - Root CA II Certificate

ACP-16-7507-2016 | ACP

Storing PKI Credentials - Cisco...Storing PKI Credentials Publickeyinfrastructure(PKI)credentials,suchasRivest,Shamir,andAdelman(RSA)keysandcertificates canbestoredinaspecificlocationontherouter

PKI Security

ACP-14-13337-2014 | ACP

Wireless PKI

ACP-16-7523-2016 | ACP

Cisco SSCA Certificate Policy and Practice Statements · 1.1.1 Cisco SSCA PKI Hierarchy The Cisco SSCA is a subordinate CA that was signed by “DST Root CA X3”, a Root CA owned