22
AUDIT DAN EVALUASI IT CIO 4 MTI UNIVERSITAS GADJAH MADA NOVEMER 2008 ENCRYPTION DAN DIGITAL SIGNATURE Oleh : 1.Angga Novansa R.A 2.Agung 3.Ziafirnanda

Slide Encryption Dan Digital Signature

Tags:

Embed Size (px)

Citation preview

Page 1: Slide Encryption Dan Digital Signature

AUDIT DAN EVALUASI ITCIO 4 MTI

UNIVERSITAS GADJAH MADANOVEMER 2008

ENCRYPTION DAN DIGITAL SIGNATURE

Oleh :1.Angga Novansa R.A2.Agung3.Ziafirnanda

Page 2: Slide Encryption Dan Digital Signature

Relasi dengan mata kuliah Audit IT

Accouting Information System, Romney/SteinbartChapter 7 : Information System Control for System Reliability

Page 3: Slide Encryption Dan Digital Signature

Bagian 1ENCRYPTION(ENKRIPSI)

Page 4: Slide Encryption Dan Digital Signature

A. Encryption

WikipediaEnkripsi dalam kriptografi adalah proses mengamankan sebuah

informasi dengan cara membuat agar informasi tersebut tidak dapat dibaca (dimengerti) tanpa bantuan pengetahuan khusus.Tujuan : Pengamanan komunikasi ( a.l urusan negara, e-commerce dan ATM)

Page 5: Slide Encryption Dan Digital Signature

A. Encryption

Cara Kerja

Algoritma / Cipher Key ( Kunci)

Page 6: Slide Encryption Dan Digital Signature

A. Encryption

Dalam proses pengiriman….

…Transfer…

Receiver

Key

Key

Sender

Page 7: Slide Encryption Dan Digital Signature

A. Encryption

Metode Cipher (Algoritma Enkripsi)a. Symmetric Key

Sender Key = Receiver Key = Public Key

b. Asymmetric KeySender Key = Private Key

Receiver Key = Public Key

Page 8: Slide Encryption Dan Digital Signature

Symmetric Key

…Transfer…

Receiver

Public Key

Sender

Public Key

Page 9: Slide Encryption Dan Digital Signature

Asymmetric Key

…Transfer…

Receiver

Private Key

Sender

Public Key

Algoritma key Generation Private Key dan Public Key yang Match

Page 10: Slide Encryption Dan Digital Signature

Bagian 2DIGITAL SIGNATURE

(TANDA TANGAN ELEKTRONIS)

Page 11: Slide Encryption Dan Digital Signature

B. Digital Signature

DefinisiUU ITE, UU 11/2008, Pasal 1 (angka 12) :Tanda tangan elektronik adalah tanda tangan yang terdiri atas Informasi

Elektronik yang dilekatkan, terasosiasi atau terkait dengan Informasi Elektronik lainnya yang digunakan sebagai alat verifikasi dan autentikasi.

Issue : Electronic Signature = Digital Signature ?Electronic signature + Kriptografi = Digital Signature

Page 12: Slide Encryption Dan Digital Signature

Keuntungan penggunaan Digital Signature

a. Otentifikasib. Integrityc. Keamanand. Efesiensie. Aksi Afirmatif

Page 13: Slide Encryption Dan Digital Signature

Algoritma Digital Signature

Skema Algoritma key generation -- > private key

- Menggenerate private key dan publik key yang match Algoritna signing

- Pesan + Private key Signatured message Algoritma verifikasi untuk publik key dan signature pada pesan..

Beberapa Algoritma yang dipakai Full Domain Hash, RSA-PSS etc., based on RSA DSA ECDSA ElGamal signature scheme Undeniable signature SHA (typically SHA-1) with RSA

Persyaratan Kualitas Algoritma   Kualitas pengimplementasian  Kunci Private harus benar-benar “private”   Pemengan Kunci Publik harus dapat diverifikasi   Pengguna menaati prosedur yang ditetapkan

Page 14: Slide Encryption Dan Digital Signature

Enkripsi dan Digital Signature

Message Hash Function

Ekripsi dgn Kunci Private

DigestDigital

Signature

Hash Fuction Mekanisme untuk menghasilkan Digest ( Ringkasan Message) dan hanya berjalan searah ( Digest Message tidak bisa).

Fungsi Memastikan isi pesan sama dengan yang dikirimkan

Algoritma yang sering dipakai : HSA dan MD 5 ( dipakai Browser Netscape )

Page 15: Slide Encryption Dan Digital Signature

Cara Kerja Transmisi

Sumber : Wikipedia

Page 16: Slide Encryption Dan Digital Signature

Certificate Authoration

Certification Authority (CA): A trusted third party whose purpose is to sign certificates for network entities it has authenticated using secure means. Other network entities can check the signature to verify that a CA has authenticated the bearer of a certificate.

Antara lain :VeriSignStartCom

Page 17: Slide Encryption Dan Digital Signature

Digital Signature dan Hukum

UU ITE ( UU No 11/2008)Pasal 1

Definisi

Pasal 11 , ayat 1Keabsahan 6 persyaratan

Pasal 12, ayat 2Keamanan sekurang kurangnya meliputi 4 point

Pasal 13, ayat 1 dan 2Penggunaan Jasa Penyelenggara Sertifikasi Elektronik

Pasal 14Persaratan informasi pada tanda tangan elektronik

Page 18: Slide Encryption Dan Digital Signature

Digital Signature

Pasal 11(1)Tanda Tangan Elektronik memiliki kekuatan hukum dan akibat

hukum yang sah selama memenuhi persyaratan sebagai berikut:

a.data pembuatan Tanda Tangan Elektronik terkait hanya kepada Penanda Tangan;

b.data pembuatan Tanda Tangan Elektronik pada saat proses penandatanganan elektronik hanya berada dalam kuasa Penanda Tangan;

c.segala perubahan terhadap Tanda Tangan Elektronik yang terjadi setelah waktu penandatanganan dapat diketahui;

d.segala perubahan terhadap Informasi Elektronik yang terkait dengan Tanda Tangan Elektronik tersebut setelah waktu penandatanganan dapat diketahui;

e.terdapat cara tertentu yang dipakai untuk mengidentifikasi siapa Penandatangannya; dan

f.terdapat cara tertentu untuk menunjukkan bahwa Penanda Tangan telah memberikan persetujuan terhadap Informasi Elektronik yang terkait.

Page 19: Slide Encryption Dan Digital Signature

Informasi Elektronik

Informasi Elektronik adalah satu atau sekumpulan data elektronik, termasuk tetapi tidak terbatas pada tulisan, suara, gambar, peta, rancangan, foto, electronic data interchange (EDI), surat elektronik (electronic mail), telegram, teleks, telecopy atau sejenisnya, huruf, tanda, angka, Kode Akses, simbol, atau perforasi yang telah diolah yang memiliki arti atau dapat dipahami oleh orang yang mampu memahaminya.

Page 20: Slide Encryption Dan Digital Signature

Digital Signature – Pasal 12

Pasal 12(2)Pengamanan Tanda Tangan Elektronik sebagaimana dimaksud pada ayat

(1) sekurang‐kurangnya meliputi:a.Sistem tidak dapat diakses oleh Orang lain yang tidak berhak;b.Penanda Tangan harus menerapkan prinsip kehati‐hatian untuk

menghindari penggunaan secara tidak sah terhadap data terkait pembuatan Tanda Tangan Elektronik;

c.Penanda Tangan harus tanpa menunda‐nunda, menggunakan cara yang dianjurkan oleh penyelenggara Tanda Tangan Elektronik ataupun cara lain yang layak dan sepatutnya harus segera memberitahukan kepada seseorang yang oleh Penanda Tangan dianggap memercayai Tanda Tangan Elektronik atau kepada pihak pendukung layanan Tanda Tangan Elektronik jika:

1.Penanda Tangan mengetahui bahwa data pembuatan Tanda Tangan Elektronik telah dibobol; atau

2.Keadaan yang diketahui oleh Penanda Tangan dapat menimbulkan risiko yang berarti, kemungkinan akibat bobolnya data pembuatan Tanda Tangan Elektronik; dan

d.Dalam hal Sertifikat Elektronik digunakan untuk mendukung Tanda Tangan Elektronik, Penanda Tangan harus memastikan kebenaran dan keutuhan semua informasi yang terkait dengan Sertifikat Elektronik tersebut

Page 21: Slide Encryption Dan Digital Signature

Penyelenggara Sertifikasi Elekronik Pasal 13

Pasal 13(1)Setiap Orang berhak menggunakan jasa

Penyelenggara Sertifikasi Elektronik untuk pembuatan Tanda Tangan Elektronik.

(2)Penyelenggara Sertifikasi Elektronik harus memastikan keterkaitan suatu Tanda Tangan Elektronik dengan pemiliknya.

Page 22: Slide Encryption Dan Digital Signature

Penyelenggara Sertifikasi Elekronik Pasal 14

Pasal 14Penyelenggara Sertifikasi Elektronik

sebagaimana dimaksud dalam Pasal 13 ayat (1) sampai dengan ayat (5) harus menyediakan informasi yang akurat, jelas, dan pasti kepada setiap pengguna jasa, yang meliputi:

a.metode yang digunakan untuk mengidentifikasi Penanda Tangan;

b.hal yang dapat digunakan untuk mengetahui data diri pembuat Tanda Tangan Elektronik; dan

c.hal yang dapat digunakan untuk menunjukkan keberlakuan dan keamanan Tanda Tangan Elektronik.


1 Counter-measures Threat Monitoring Cryptography as a security tool Encryption Digital Signature Key distribution

1 Counter-measures Threat Monitoring Cryptography as a security tool Encryption Digital Signature Key distribution

Documents
Agenda Cryptography ??. Encryption. Symmetric Encryption. Asymmetric Encryption. Diffie-hellman. Hashing. Digital signature. Authentication Protocols

Agenda Cryptography ??. Encryption. Symmetric Encryption. Asymmetric Encryption. Diffie-hellman. Hashing. Digital signature. Authentication Protocols

Documents
Efficient Identity-Based Encryption using NTRU Lattices Identity... · An Identity-based encryption scheme 2/21 [GPV]: Signature scheme =)IBE Alice Carol Sign (m) Sch ema de signature

Efficient Identity-Based Encryption using NTRU Lattices Identity... · An Identity-based encryption scheme 2/21 [GPV]: Signature scheme =)IBE Alice Carol Sign (m) Sch ema de signature

Documents
APPLICATION FORM - SIGNATURE / ENCRYPTION … · Class 1 Class 2 Class 3 Signature Encryption Combo CLASS: TYPE: VALIDITY: 2 Years TO BE FILLED BY RA OFFICE ONLY D D M M Y Y Y Y

APPLICATION FORM - SIGNATURE / ENCRYPTION … · Class 1 Class 2 Class 3 Signature Encryption Combo CLASS: TYPE: VALIDITY: 2 Years TO BE FILLED BY RA OFFICE ONLY D D M M Y Y Y Y

Documents
New European Schemes for Signature, Integrity and ... · PDF fileNew European Schemes for Signature, Integrity and Encryption (NESSIE): ... (New European Schemes for Signature, Integrity,

New European Schemes for Signature, Integrity and ... · PDF fileNew European Schemes for Signature, Integrity and Encryption (NESSIE): ... (New European Schemes for Signature, Integrity,

Documents
Connecting Signature® Slide Cassette Printer to

Connecting Signature® Slide Cassette Printer to

Documents
COMPANYS OVERVIEW & SOFTWARE DEFINATION. : Document Management & Archiving System, Encryption & Clipping, Zonal Security & Compression : Bank Signature

COMPANYS OVERVIEW & SOFTWARE DEFINATION. : Document Management & Archiving System, Encryption & Clipping, Zonal Security & Compression : Bank Signature

Documents
From Encryption to - EIEckleung/research/00-encrypt.pdf · 2002. 1. 30. · Email: enchikin@inet.polyu.edu.hk Key Terms Encryption, Public Key Infrastructure, Digital Signature, Electronic

From Encryption to - EIEckleung/research/00-encrypt.pdf · 2002. 1. 30. · Email: [email protected] Key Terms Encryption, Public Key Infrastructure, Digital Signature, Electronic

Documents
APPLICATION FORM - SIGNATURE / ENCRYPTION CERTIFICATE€¦ · Signature Encryption Combo CLASS: TYPE: VALIDITY: 2 Years D D M M Y Y Y Y Organisation Name Department DOCUMENT PROOF

APPLICATION FORM - SIGNATURE / ENCRYPTION CERTIFICATE€¦ · Signature Encryption Combo CLASS: TYPE: VALIDITY: 2 Years D D M M Y Y Y Y Organisation Name Department DOCUMENT PROOF

Documents
Understanding Encryption Services Using Wireshark · Understanding Encryption Services Using Wireshark ... Slide 12 Part 1 ... Message Digests b)

Understanding Encryption Services Using Wireshark · Understanding Encryption Services Using Wireshark ... Slide 12 Part 1 ... Message Digests b)

Documents
XML Encryption and Signature for Securing Web Servicescurrent criterions like XML encryption, and XML signature [3]. Signature and encryption of XML document are methods to sign and

XML Encryption and Signature for Securing Web Servicescurrent criterions like XML encryption, and XML signature [3]. Signature and encryption of XML document are methods to sign and

Documents
HYBRID ENCRYPTION FOR DIGITAL SIGNATUREeprints.utem.edu.my/14986/1/HYBRID ENCRYPTION FOR DIGITAL SIGNATURE...The Hybrid Encryption For Digital Signature is developed to provide confidentiality

HYBRID ENCRYPTION FOR DIGITAL SIGNATUREeprints.utem.edu.my/14986/1/HYBRID ENCRYPTION FOR DIGITAL SIGNATURE...The Hybrid Encryption For Digital Signature is developed to provide confidentiality

Documents
SIGNATURE / ENCRYPTION CERTIFICATE - Digital Signature in Bangalore | Bangalore ...bangaloredigitalsignature.com/documents/class3b.pdf · 2018-09-02 · eMudhra Limited, 3rd Floor,

SIGNATURE / ENCRYPTION CERTIFICATE - Digital Signature in Bangalore | Bangalore ...bangaloredigitalsignature.com/documents/class3b.pdf · 2018-09-02 · eMudhra Limited, 3rd Floor,

Documents
511311 Signature Slide Printer Manual English - DTM Medicaldtm-medical.eu/manuals/511311-Signature-Slide-Printer... · 2019-04-08 · Slides should be 1.00" x 3.00" x .040" with clipped

511311 Signature Slide Printer Manual English - DTM Medicaldtm-medical.eu/manuals/511311-Signature-Slide-Printer... · 2019-04-08 · Slides should be 1.00" x 3.00" x .040" with clipped

Documents
W3C Workshop on Next Steps for XML Signature and XML Encryption

W3C Workshop on Next Steps for XML Signature and XML Encryption

Documents
CONFIDENTIALY USING CONVENTIONAL ENCRYPTION Chapter 7 Historically Conventional Encryption Recently Authentication, Integrity, Signature, Public-key

CONFIDENTIALY USING CONVENTIONAL ENCRYPTION Chapter 7 Historically Conventional Encryption Recently Authentication, Integrity, Signature, Public-key

Documents
CAC Digital Signature/CAC Email Encryption in Thunderbird ... › files › Thunderbird_CAC_Digital_Signature.pdfCAC Digital Signature/CAC Email Encryption in Thunderbird (Windows

CAC Digital Signature/CAC Email Encryption in Thunderbird ... › files › Thunderbird_CAC_Digital_Signature.pdfCAC Digital Signature/CAC Email Encryption in Thunderbird (Windows

Documents
Project-Team CASCADE · 2.Design and provable security, for –signature schemes –public-key encryption schemes –identity-based encryption schemes –key agreement protocols –group-oriented

Project-Team CASCADE · 2.Design and provable security, for –signature schemes –public-key encryption schemes –identity-based encryption schemes –key agreement protocols –group-oriented

Documents
SLIDE: Evaluation of a Formalized Encryption Library for Safety- … · 2017. 4. 26. · Asymmetric key generation and exchange Authenticated Encryption using Curve25519 algorithms

SLIDE: Evaluation of a Formalized Encryption Library for Safety- … · 2017. 4. 26. · Asymmetric key generation and exchange Authenticated Encryption using Curve25519 algorithms

Documents
APPLICATION FORM - SIGNATURE / ENCRYPTION CERTIFICATE€¦ · (Certificate applicant) has provided correct information in the ‘Application form for issue of Digital Signature/Encryption

APPLICATION FORM - SIGNATURE / ENCRYPTION CERTIFICATE€¦ · (Certificate applicant) has provided correct information in the ‘Application form for issue of Digital Signature/Encryption

Documents
Server-based email encryption signature verification (validation with S/MIME only). iQ.Suite Crypt Pro supports the PGP/GnuPG encryption standard for Windows, Linux, AIX and Sun Solaris

Server-based email encryption signature verification (validation with S/MIME only). iQ.Suite Crypt Pro supports the PGP/GnuPG encryption standard for Windows, Linux, AIX and Sun Solaris

Documents
Proposed Documents for JOSE: JSON Web Signature (JWS) JSON Web Encryption (JWE) JSON Web Key (JWK)

Proposed Documents for JOSE: JSON Web Signature (JWS) JSON Web Encryption (JWE) JSON Web Key (JWK)

Documents
APPLICATION FORM - e-Mudhrae-mudhra.com/Repository/Forms/Signature-Encryption-Individual... · application form - signature / encryption certificate for individual please fill in

APPLICATION FORM - e-Mudhrae-mudhra.com/Repository/Forms/Signature-Encryption-Individual... · application form - signature / encryption certificate for individual please fill in

Documents
El-Gamal Encryption: example with Octavecrypto.fmf.ktu.lt/lt/telekonf/archyvas... · The ElGamal signature scheme is a digital signature scheme which is based on the difficulty of

El-Gamal Encryption: example with Octavecrypto.fmf.ktu.lt/lt/telekonf/archyvas... · The ElGamal signature scheme is a digital signature scheme which is based on the difficulty of

Documents
APPLICATION FORM - SIGNATURE / ENCRYPTION CERTIFICATE · Signature Encryption Combo CLASS: TYPE: VALIDITY: 2 Years D D M M Y Y Y Y Organisation Name Department DOCUMENT PROOF (attested

APPLICATION FORM - SIGNATURE / ENCRYPTION CERTIFICATE · Signature Encryption Combo CLASS: TYPE: VALIDITY: 2 Years D D M M Y Y Y Y Organisation Name Department DOCUMENT PROOF (attested

Documents
APPLICATION FORM - SIGNATURE / ENCRYPTION · PDF fileAPPLICATION FORM - SIGNATURE / ENCRYPTION CERTIFICATE ... Application ID: (S) (E) ... I have checked and verified the application

APPLICATION FORM - SIGNATURE / ENCRYPTION · PDF fileAPPLICATION FORM - SIGNATURE / ENCRYPTION CERTIFICATE ... Application ID: (S) (E) ... I have checked and verified the application

Documents
APPLICATION FORM - SIGNATURE / ENCRYPTION ......APPLICATION FORM - SIGNATURE / ENCRYPTION CERTIFICATE FOR INDIVIDUAL PLEASE FILL IN BLOCK LETTERS ONLY. ALL FIELDS ARE MANDATORY Page

APPLICATION FORM - SIGNATURE / ENCRYPTION ......APPLICATION FORM - SIGNATURE / ENCRYPTION CERTIFICATE FOR INDIVIDUAL PLEASE FILL IN BLOCK LETTERS ONLY. ALL FIELDS ARE MANDATORY Page

Documents
A New Code Based Public Key Encryption and Signature ... · A new code based public key encryption and signature scheme based on list decoding Acknowledgements To Tanja Lange for

A New Code Based Public Key Encryption and Signature ... · A new code based public key encryption and signature scheme based on list decoding Acknowledgements To Tanja Lange for

Documents
Signature Chefs - Live Auction Slide Show

Signature Chefs - Live Auction Slide Show

Business
Using SMT Solvers to Automate Design Tasks for Encryption ...sharps.org/wp-content/uploads/AKINYELE-CCS13.pdf · Using SMT Solvers to Automate Design Tasks for Encryption and Signature

Using SMT Solvers to Automate Design Tasks for Encryption ...sharps.org/wp-content/uploads/AKINYELE-CCS13.pdf · Using SMT Solvers to Automate Design Tasks for Encryption and Signature

Documents