18
CACert Tanner Lovelace Triangle Linux Users Group 11/May/2006

CACert Presentation

Embed Size (px)

DESCRIPTION

A talk on the CACert certification authority I gave to the Triangle Linux Users Group ( http://www.trilug.org/ ) back in May 2006. CACert is currently undergoing a bunch of changes so there's no guarantee how up to date this is or will remain.

Citation preview

Page 1: CACert Presentation

CACertTanner Lovelace

Triangle Linux Users Group11/May/2006

Page 2: CACert Presentation

Outline

What is SSL and why do we need it?

What is a Certificate Authority?

What is CACert?

How does CACert verify identity?

How do I use CACert?

Conclusion and Mass Assurance

Page 3: CACert Presentation

How Does the Web Work?

Client-server

No verification or encryption (in standard model)

Page 4: CACert Presentation

Problems with Standard Web

Susceptible to eavesdropping

Man-in-the-middle (i.e. transparent proxies)

Page 5: CACert Presentation

The Web with SSL

Encryption of Traffic

Verification of Identity

Page 6: CACert Presentation

Outline

What is SSL and why do we need it?

What is a Certificate Authority?

What is CACert?

How does CACert verify identity?

How do I use CACert?

Conclusion and Mass Assurance

Page 7: CACert Presentation

Trusted Third Party

Checks identity

Based on identity check, it vouches for a server

Page 8: CACert Presentation

Standard Certificate Authorities

Verisign

Thawte

AOL

GoDaddy

Many more...

Page 9: CACert Presentation

CACert

Community driven Certificate Authority

Primary goals:

Inclusion into mainstream browsers! (Mozilla bug #215243, opened 8/6/03, currently with 63 votes, 107 subscribers)

http://wiki.cacert.org/wiki/InclusionStatus

To provide a trust mechanism to go with the security aspects of encryption.

Page 10: CACert Presentation

Outline

What is SSL and why do we need it?

What is a Certificate Authority?

What is CACert?

How does CACert verify identity?

How do I use CACert?

Conclusion and Mass Assurance

Page 11: CACert Presentation

CACert Assurance Program

Identify Verification Program

CACert Assurer

Trusted Third Party

Being a notary for another authority

Page 12: CACert Presentation

Point System

0-49 points - Considered “unassured”

50 points - Full name on client certs, Server certs valid for 24 months, GPG key signed by CACert

100 points - Maximum available through WoT, can apply for codesigning cert and assure others

150 points - Fully assured, can issue 35 points

200 points - Super Assurer, temporary increase

Page 13: CACert Presentation

Issuing Points

If you have 100 points, you can assure others.

You get 2 points for each assurance

The maximum points you can issue is a sliding scale

Own points Issuable points

100 10

110 15

120 20

130 25

140 30

150 35

Page 14: CACert Presentation

Outline

What is SSL and why do we need it?

What is a Certificate Authority?

What is CACert?

How does CACert verify identity?

How do I use CACert?

Conclusion and Mass Assurance

Page 15: CACert Presentation

Installing the Root Certificate

Go to http://www.cacert.org/

Click on “Root Certificate”

Check the fingerprint and if correct...

Import into the browser

Page 16: CACert Presentation

Getting a Certificate

Client Certificates

Server Certificates

Generating the certificate

Getting it signed

Page 17: CACert Presentation

Using Your Certificate

Using a client certificate

Using a server certificate

Installation on a server

Page 18: CACert Presentation

Outline

What is SSL and why do we need it?

What is a Certificate Authority?

What is CACert?

How does CACert verify identity?

How do I use CACert?

Conclusion and Mass Assurance


Presentation Title Presentation Title Presentation Title

Presentation Title Presentation Title Presentation Title

Documents
Merged Presentation KICC Presentation

Merged Presentation KICC Presentation

Documents
PRESENTATION HEADER Presentation Title Placeholder PRESENTATION HEADER Presentation Title Placeholder

PRESENTATION HEADER Presentation Title Placeholder PRESENTATION HEADER Presentation Title Placeholder

Documents
Imeem Presentation Buscomp Presentation

Imeem Presentation Buscomp Presentation

Technology
Unit 9 Consumer Arithmetic Presentation 1Buying Presentation 2Hire Purchases Presentation 3Earning Presentation 4Money Exchange Presentation 5Savings Presentation

Unit 9 Consumer Arithmetic Presentation 1Buying Presentation 2Hire Purchases Presentation 3Earning Presentation 4Money Exchange Presentation 5Savings Presentation

Documents
A Presentation on Presentation

A Presentation on Presentation

Documents
Presentation Effective Presentation Skills

Presentation Effective Presentation Skills

Documents
Investor Presentation...This presentation

Investor Presentation...This presentation

Documents
FDA Presentation FDA Presentation

FDA Presentation FDA Presentation

Documents
CVA Accenture Presentation Presentation

CVA Accenture Presentation Presentation

Documents
Presentation skills - Zen presentation

Presentation skills - Zen presentation

Education
Investor Presentation April 2015s1.q4cdn.com/.../2015/150410-Investor-Presentation-Apr.pdfInvestor Presentation April 2015 This management presentation (the “presentation”) was

Investor Presentation April 2015s1.q4cdn.com/.../2015/150410-Investor-Presentation-Apr.pdfInvestor Presentation April 2015 This management presentation (the “presentation”) was

Documents
Presentation on presentation

Presentation on presentation

Presentations & Public Speaking
LinuxTag 2012 Highlight-Report · Identity checks for the Web of Trust CAcert is a community-based certificate exhibitor, for example, for the operation for web- and e-mail-servers

LinuxTag 2012 Highlight-Report · Identity checks for the Web of Trust CAcert is a community-based certificate exhibitor, for example, for the operation for web- and e-mail-servers

Documents
Unit 21 Formula Presentation 1Using Formula Presentation 2Constructing Formulae Presentation 3Negative Numbers Presentation 4Temperature Differences Presentation

Unit 21 Formula Presentation 1Using Formula Presentation 2Constructing Formulae Presentation 3Negative Numbers Presentation 4Temperature Differences Presentation

Documents
CACert - A Community-driven Certification Authority - OpenSistemas

CACert - A Community-driven Certification Authority - OpenSistemas

Technology
Production Presentation VUMS Presentation

Production Presentation VUMS Presentation

Documents
Presentation Title Presentation Subtitle

Presentation Title Presentation Subtitle

Documents
TIP - svn.cacert.orgsvn.cacert.org/.../CAcertPresentationHCC-Venlo.pdf · © CAcert, 2008 Teus/HCC-Venlo 8 Jan 2008 50 slides minus 1 to go TIP Remember, your sense of conviction

TIP - svn.cacert.orgsvn.cacert.org/.../CAcertPresentationHCC-Venlo.pdf · © CAcert, 2008 Teus/HCC-Venlo 8 Jan 2008 50 slides minus 1 to go TIP Remember, your sense of conviction

Documents
presentation skills p presentation resentationbbcdcomdes.weebly.com/uploads/1/1/8/6/11866691/wk_1_presentat… · presentation resentation presentation skills. skills group presentation

presentation skills p presentation resentationbbcdcomdes.weebly.com/uploads/1/1/8/6/11866691/wk_1_presentat… · presentation resentation presentation skills. skills group presentation

Documents
Data Presentation Techniques. Data Presentation Techniques Data Presentation Techniques

Data Presentation Techniques. Data Presentation Techniques Data Presentation Techniques

Documents
PRESENTATION TITLE PRESENTATION TITLE PRESENTATION …

PRESENTATION TITLE PRESENTATION TITLE PRESENTATION …

Documents
FANATIC WINDSURFING 2017 PRODUCT PRESENTATION · product presentation. range overview. radical wave . product presentation. product presentation. product presentation. wave / freestyle

FANATIC WINDSURFING 2017 PRODUCT PRESENTATION · product presentation. range overview. radical wave . product presentation. product presentation. product presentation. wave / freestyle

Documents
TIP - CAcert.orgsvn.cacert.org/.../CAcertPresentationNLUUG...2009.pdf · © CAcert, 2009. Rudi/Teus NLUUG May 2009, 100 slides minus 1 to go TIP Remember, your sense of conviction

TIP - CAcert.orgsvn.cacert.org/.../CAcertPresentationNLUUG...2009.pdf · © CAcert, 2009. Rudi/Teus NLUUG May 2009, 100 slides minus 1 to go TIP Remember, your sense of conviction

Documents
TIP - CAcert.orgsvn.cacert.org/CAcert/PR/Presentations/CAcert... · What is a digital certificate, encryption technology, identification What is a CA about? ... S 761 - The Millenium

TIP - CAcert.orgsvn.cacert.org/CAcert/PR/Presentations/CAcert... · What is a digital certificate, encryption technology, identification What is a CA about? ... S 761 - The Millenium

Documents
Drought presentation presentation

Drought presentation presentation

Technology
TUESDAY, 8 MAY 2018 Program.pdfPitch Presentation 4 Pitch Presentation 10 Pitch Presentation 16 Pitch Presentation 22 Pitch Presentation 28 Pitch Presentation 33 275 - DETERMINING

TUESDAY, 8 MAY 2018 Program.pdfPitch Presentation 4 Pitch Presentation 10 Pitch Presentation 16 Pitch Presentation 22 Pitch Presentation 28 Pitch Presentation 33 275 - DETERMINING

Documents
CAcert assurer trainingsvn.cacert.org/CAcert/Education/Assurer Education (e).pdf · 2007. 4. 18. · Page 2 CAcert Assurer training CAcert assurer training This tutorial is part of

CAcert assurer trainingsvn.cacert.org/CAcert/Education/Assurer Education (e).pdf · 2007. 4. 18. · Page 2 CAcert Assurer training CAcert assurer training This tutorial is part of

Documents
Investor Presentation...Investor Presentation November 2016 This presentation, including the accompanying oral presentation (collectively, this “presentation”),does not constitute

Investor Presentation...Investor Presentation November 2016 This presentation, including the accompanying oral presentation (collectively, this “presentation”),does not constitute

Documents
First Presentation+2nd Presentation

First Presentation+2nd Presentation

Documents