36
Reshaping Key Management: A Tale of Two Decades John Iliadis, University of the Aegean, 2000 De Facto Joint Research Group on Information and Communication Systems Security

Reshaping Key Management: A Tale of Two Decades

Embed Size (px)

DESCRIPTION

Invited lecture, Athens University of Business and Economics, addressed to the postgraduate students (MSc in Information Systems), May 2000

Citation preview

  • 1. Reshaping Key Management: A Tale of Two Decades John Iliadis, University of the Aegean, 2000 De Facto Joint Research Group on Information and Communication Systems Security
  • 2. Overview Communication Networks: Now and Then. New Key Management Paradigm Certificates Certificate Management Intro to TTPs and PKI John Iliadis, University of the Aegean, 2000 Slide 2/36
  • 3. Communication Networks: Now and Then Then Centralised Closed private or semi-private, no access allowed, wide spectrum of proprietary networking/communication protocols, expensive, targeted user group, early Internet instances. John Iliadis, University of the Aegean, 2000 Slide 3/36
  • 4. Communication Networks: Now and Then (cont.) Now Distributed no ownership, no central control, resilience. Open access to anyone, standardised protocols, low-cost access. John Iliadis, University of the Aegean, 2000 Slide 4/36
  • 5. Basic Services of Key Management Generate-Key Register-Key Create-KeyCertificate Distribute-Key Install-Key Store-Key John Iliadis, University of the Aegean, 2000 Derive-Key Archive-Key Revoke-Key Deregister-Key Destroy-Key Slide 5/36
  • 6. Key Distribution - Symmetric Cryptosystems Direct Key Translation Center Key Distribution Center Based on asymmetric techniques secret key agreement secret key transport John Iliadis, University of the Aegean, 2000 Slide 6/36
  • 7. Key Translation Center (symmetric crypto) 1 A 3 KTC 2 B 4 A->KTC: enciphered key KTC->B: sends B re-enciphered key, OR KTC->A: sends A re-enciphered key A->B: A sends B re-enciphered key John Iliadis, University of the Aegean, 2000 Slide 7/36
  • 8. Key Distribution Center (symmetric crypto) 1 A 2a KDC 2b B A->KDC: request for shared key KDC->A: sends A enciphered shared key KDC->B: sends B enciphered shared key If KDC cannot communicate securely with B (2b), then A assumes responsibility for distribution of enciphered shared key to B John Iliadis, University of the Aegean, 2000 Slide 8/36
  • 9. Key Distribution in Symmetric Cryptosystems - A Note All mechanisms require the existence of a shared symmetric or asymmetric key and an inline Key Center. Centralised Closed Private Proprietary protocols Expensive John Iliadis, University of the Aegean, 2000 Distributed No ownership No central control Resilience Access to anyone Standardised protocols Low-cost access. Slide 9/36
  • 10. Key Distribution - Asymmetric Cryptosystems Protected channels (data origin authentication and data integrity protection, e.g. courier and registered mail) TTP-assisted (i.e. certificates) John Iliadis, University of the Aegean, 2000 Slide 10/36
  • 11. Key Distribution - Asymmetric Cryptosystems (cont.) CA 1 2 A 3 4 B A->CA: KeyA (?) CA->A: CertificateA CAB: CertificateA A->B: CertificateA John Iliadis, University of the Aegean, 2000 Slide 11/36
  • 12. Key Distribution in Asymmetric Cryptosystems - A Note Mechanisms require the existence of either an integrity protected channel, or an (at least) offline TTP* Centralised Closed Private Proprietary protocols Expensive *Other TTP operational requirements, like revocation, necessitate the online operation of TTPs John Iliadis, University of the Aegean, 2000 Distributed No ownership No central control Resilience Access to anyone Standardised protocols Low-cost access. Slide 12/36
  • 13. Key Distribution - A Final Note The Case of Asymmetric versus Symmetric Cryptosystems, and vice-versa. Verdict: Innocent on all charges, both of them. there are communications that necessitate symmetric crypto, like small scale closed networks, top-secret communication lines (one-time pads) etc. there are applications that necessitate symmetric crypto, like encryption. Asymmetric encryption is far too slow in most cases, either because of huge amount of data or because of small computational power (e.g. smart cards) John Iliadis, University of the Aegean, 2000 Slide 13/36
  • 14. Key Distribution - A Final Note (cont.) The Case of Asymmetric versus Symmetric Cryptosystems, and vice-versa. Verdict 2: The Case should never have been taken to court! Theres no point in excluding or reducing usage of one of them. Joint usage leads to best results (e.g. Digital Envelopes, asymmetric based distribution of symmetric keying material). There are advantages and disadvantages in both. The main difference is in key management requirements: confidentiality against authenticity John Iliadis, University of the Aegean, 2000 Slide 14/36
  • 15. Key Distribution - A Final Note (cont.) Asymmetric crypto was not invented to meet the needs of the new, distributed and loosely federated networking environments. It existed before. A solution in search of a problem or rather an application area... John Iliadis, University of the Aegean, 2000 Slide 15/36
  • 16. Digital Certificates Offline authentication token Third, trusted entity vouches for it Expiration, revocation Contents: identification info of certificate holder identification info of CA public key of certificate holder expiration date other info (e.g. CSI location info) signed by CA John Iliadis, University of the Aegean, 2000 Slide 16/36
  • 17. Digital Signatures Generating certificate-supported signatures Non-repudiation Timestamping Non-repudiation mechanisms and fair exchange mechanisms Underlying legal framework John Iliadis, University of the Aegean, 2000 Slide 17/36
  • 18. European Directive on Electronic Signatures Directive aims at technology independence Problem: Directive identifies requirements that fall under the scope of technology (e.g. secure signature creation devices, Annex III) Solution: Define sets of components that comply with the Directive. Caution needed when defining these sets; they must not conflict with other, underlying regulatory frameworks John Iliadis, University of the Aegean, 2000 Slide 18/36
  • 19. Secure Signature Creation Devices Hardware tokens easier to deploy wide acceptance by public as a secure method degree of security awareness required: low Security requirements and evaluation standards harder to deploy; compliance certification (end-user systems)? degree of public confidence: low degree of security awareness required: high John Iliadis, University of the Aegean, 2000 Slide 19/36
  • 20. Secure Signature Creation Devices (cont.) Factors to consider: Ease of use, confidence/acceptance by public, cost of implementation, operation and maintenance, security level and assurance, others... John Iliadis, University of the Aegean, 2000 Slide 20/36
  • 21. Main Points in Certificate Lifecycle Key generation Entity Registration Certificate Distribution Certificate Archiving Revocation John Iliadis, University of the Aegean, 2000 Slide 21/36
  • 22. Some Threats in Electronic Transactions Monitoring of communication lines Shared key guessing/stealing Shared key stealing Unauthorised modification of information in transit Masquerade - Web spoofing Password stealing Unauthorised access John Iliadis, University of the Aegean, 2000 Slide 22/36
  • 23. Insecure Electronic Transactions Entity1 Network Entity2 insecure transaction John Iliadis, University of the Aegean, 2000 Slide 23/36
  • 24. Facing Threats monitoring of communication lines Encryption with randomly generated shared session key shared session key stealing/guessing -cryptographically secure random key generators -encryption of shared session key with the public key of the receiving entity Non-authorised modification of (in-transit) information secure hashing algorithms for message authentication codes John Iliadis, University of the Aegean, 2000 Slide 24/36
  • 25. Facing Threats Masquerade - Web spoofing Exchange of X509v3 certificates and verification against a Directory Password stealing Passwords are never transmitted in the network Unauthorised access Local ACL. Authentication by certificate verification John Iliadis, University of the Aegean, 2000 Slide 25/36
  • 26. Securing electronic transactions Entity1 Network Issuing certificates Entity2 Issuing certificates TTP secure transaction insecure transaction John Iliadis, University of the Aegean, 2000 Slide 26/36
  • 27. TTP : The Cornerstone of a Public Key Infrastructure. An Overview TTP : an impartial organisation delivering business confidence, through commercial and technical security features, to an electronic transaction John Iliadis, University of the Aegean, 2000 Slide 27/36
  • 28. TTP : The Cornerstone of a Public Key Infrastructure. Technical Infrastructure Certificate Authority, providing certificates. Registration Authority, registering users and binding their identities to certificates. Repositories, storage and dissemination entities containing TTPrelated public material such as certificates and CRLs. Certificate holders, holding certificates from CAs which they use in order to sign or authenticate themselves. Dependent entities, entities which use the certificates presented by other entities in order to authenticate the latter or verify their signature. John Iliadis, University of the Aegean, 2000 Slide 28/36
  • 29. TTP : The Cornerstone of a Public Key Infrastructure. Technical Infrastructure TTP RDBMs Directory Services local repository Web browser Web Server John Iliadis, University of the Aegean, 2000 Slide 29/36
  • 30. PKI Set of TTPs Interoperability and corroboration Legal framework Value-Added services Timestamping Information Archiving Notary Public ... John Iliadis, University of the Aegean, 2000 Slide 30/36
  • 31. Fashion Issues concerning PKI Current commercial PKI trends Its fashionable Its easy to deployTypical installations of TTP software, withour prior analysis of requirements and without designing a Security Policy and a Certificate Policy, are not that far. It happened (is happening?) with firewalls some time ago... It meets several security requirements, through a wide set of security services ranging from confidentiality to public notary Its a panacea! John Iliadis, University of the Aegean, 2000 Slide 31/36
  • 32. Fashion Issues concerning PKI (cont.) however: PKI is nor a cure-all, neither a magical solution to security problems Requirements->Services->Functions ->Implementation Certificate and Security Policy of TTP Legal framework and regulations Complexity in design and development User-awareness needed Clearly not an InfoSec bandage John Iliadis, University of the Aegean, 2000 Slide 32/36
  • 33. Conclusion PKI is a panacea for security as much as aspirin is a panacea for pain. Easing ulcer pains with aspirin SHOULD BE AVOIDED AT ALL COSTS... John Iliadis, University of the Aegean, 2000 Slide 33/36
  • 34. Areas needing further research Identification and naming. Certificate path validation. Signature policy. Scalable revocations and scalable suspensions. Role of notaries. Trusted archival services. Use of biometrics in relation to electronic signatures. John Iliadis, University of the Aegean, 2000 Slide 34/36
  • 35. Some interesting problems to be studied Certificate 1 Certificate 2 John Doe John Doe org: X org: Y org unit: Xu org unit: Yu Country: GR Country: GR In general, TTP service-level collaboration has to be studied further cross-certification (technical, legal) revocation ... John Iliadis, University of the Aegean, 2000 Slide 35/36
  • 36. References Branchaud M., "A Survey of Public Key Infrastructures", Msc Thesis Department of Computer Science McGill University, Montreal, 1997. Directive 1999/93/EC of the European Parliament and of the Council on a Community framework for electronic signatures, 13 December 1999, published in the Official Journal of the European Communities, 19 January 2000. Housley R., Ford W., Polk W., Solo D., Internet X.509 Public Key Infrastructure Certificate and CRL Profile, , IETF Network Working Group, Request for Comments 2459 (Category: Standards Track), January 1999, available at http://www.ietf.org/rfc/rfc2459.txt ISO Standard 11770 (1996), Information Technology - Security Techniques - Key Management Part 1: Framework. ITU-T Recommendation X.509 (1997) and ISO/IEC 9594-8:1997, Information technology - Open Systems Interconnection, "The Directory: Authentication framework". Kohnfelder L., Towards a practical public-key cryptosystem, BSc Thesis, M.I.T., Cambridge MA, September 1978. Ronald L. Rivest, Adi Shamir, Leonard M. Adleman, A Method for Obtaining Digital Signatures and Public-Key Cryptosystems, Communications of the ACM, vol21, No2, pp.120-126, 1978. Schneier B., Applied Cryptography, 2nd ed, John Wiley & Sons, 1996. W. Diffie, M. E. Hellman, New Directions in Cryptography, IEEE Transactions, vol IT-22, pages 644-654, 1976. John Iliadis, University of the Aegean, 2000 Slide 36/36

Reshaping Indian Workplaces - FICCIficci.in/.../ISP/Co-working_Reshaping-Indian-Workplaces.pdf3 Co-orking Reshaping Indian Workplaces Co-orking Reshaping Indian Workplaces 4 A steaming

Reshaping Indian Workplaces - FICCIficci.in/.../ISP/Co-working_Reshaping-Indian-Workplaces.pdf3 Co-orking Reshaping Indian Workplaces Co-orking Reshaping Indian Workplaces 4 A steaming

Documents
MEGATRENDS RESHAPING SERVICES

MEGATRENDS RESHAPING SERVICES

Documents
Reshaping AHDI 2011

Reshaping AHDI 2011

Documents
Reshaping the world

Reshaping the world

Documents
#1NLab14: Reshaping Behavior

#1NLab14: Reshaping Behavior

Mobile
Reshaping enterrprise software

Reshaping enterrprise software

Software
Reshaping Enterprise Architecture

Reshaping Enterprise Architecture

Technology
Reshaping Personhood : Fictions of Fatness and Problems of ...ir.lib.u-ryukyu.ac.jp/bitstream/20.500.12000/2682/1/No14p1.pdf · last decades (e.g. ecocriticism, ecotourism, ... the

Reshaping Personhood : Fictions of Fatness and Problems of ...ir.lib.u-ryukyu.ac.jp/bitstream/20.500.12000/2682/1/No14p1.pdf · last decades (e.g. ecocriticism, ecotourism, ... the

Documents
Reshaping IT - Fujitsu

Reshaping IT - Fujitsu

Documents
Reshaping Results - ccid.qc.ca

Reshaping Results - ccid.qc.ca

Documents
Reshaping IT

Reshaping IT

Documents
Nose Reshaping

Nose Reshaping

Healthcare
RESHAPING SUBURBS

RESHAPING SUBURBS

Documents
Changes in Family Welfare from 1994 to 2012: A Tale of Two Decades

Changes in Family Welfare from 1994 to 2012: A Tale of Two Decades

Documents
Reshaping procedures for the surgical management of ...sites.cardiff.ac.uk/ukcxl/files/2013/11/Reshaping-procedures-for... · Reshaping procedures for the surgical management of corneal

Reshaping procedures for the surgical management of ...sites.cardiff.ac.uk/ukcxl/files/2013/11/Reshaping-procedures-for... · Reshaping procedures for the surgical management of corneal

Documents
RESHAPING - Climax Portable

RESHAPING - Climax Portable

Documents
Reshaping Museum Space

Reshaping Museum Space

Documents
Anthropology: George Shotton By Lauren Kaufman and Beth Doerr “An Incredible tale of deceit, murder, and intrigue baffled investigators for decades”

Anthropology: George Shotton By Lauren Kaufman and Beth Doerr “An Incredible tale of deceit, murder, and intrigue baffled investigators for decades”

Documents
BASIC RESHAPING COURSE

BASIC RESHAPING COURSE

Documents
Reshaping Legal Services

Reshaping Legal Services

Documents
Reshaping Penumbra

Reshaping Penumbra

Documents
Reshaping the mind

Reshaping the mind

Health & Medicine
Reshaping compact automation

Reshaping compact automation

Documents
A Tale of Two Decades: the ECB’s Monetary Policy …...2019/10/07  · A Tale of Two Decades: the ECB’s Monetary Policy at 20 M. Rostagno, C. Altavilla, G. Carboni, W. Lemke, R

A Tale of Two Decades: the ECB’s Monetary Policy …...2019/10/07  · A Tale of Two Decades: the ECB’s Monetary Policy at 20 M. Rostagno, C. Altavilla, G. Carboni, W. Lemke, R

Documents
Reshaping IT - Reshaping Business

Reshaping IT - Reshaping Business

Business
122222 reshaping

122222 reshaping

Documents
Reshaping IT Reshaping Business - Fujitsu Brandwitte.ITFUTURE12… · Reshaping Business Business Solutions beyond IT Combining portfolio elements to holistic solutions Enabling new

Reshaping IT Reshaping Business - Fujitsu Brandwitte.ITFUTURE12… · Reshaping Business Business Solutions beyond IT Combining portfolio elements to holistic solutions Enabling new

Documents
Reshaping Body Image

Reshaping Body Image

Documents
Reshaping technical communication

Reshaping technical communication

Documents
Reshaping cooperative markets

Reshaping cooperative markets

Education