Secure Key Distribution Methods in Public Key Infrastructure

Slide Note
Embed
Share

Explore the various methods of secure key distribution in Public Key Infrastructure, including the use of signatures, certificate authorities, roots of trust, and the web of trust. Understand how Bob can securely obtain public keys and certificates to establish trust in the system.

vendetti_y
vendetti_y Follow

Uploaded on Sep 15, 2024 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. Public Key Infrastructure Slides by Prof. Jonathan Katz. Lightly edited by me.

  2. Public-key distribution Alice, pk* pk X Alice, pk Alice, pk* Alice, pk pk, sk

  3. Public-key distribution pk Alice, pk X Alice, pk Alice, pk* pk, sk

  4. Use signatures for secure key distribution! Assume a trusted party with a public key known to everyone CA = certificate authority Public key pkCA Private key skCA

  5. Use signatures for secure key distribution! Alice asks the CA to sign the binding (Alice, pk) certCA Alice = SignskCA(Alice, pk) (CA must verify Alice s identity out of band)

  6. Use signatures for secure key distribution! Bob obtains Alice, pk, and the certificate certCA Alice check that VrfypKCA((Alice, pk), certCA Alice) = 1 Bob is then assured that pk is Alice s public key As long as the CA is trustworthy Honest, and properly verifies Alice s identity and the CA s private key has not been compromised

  7. Chicken-and-egg problem? How does Bob get pkCA in the first place? Several possibilities

  8. Roots of trust Bob only needs to securely obtain a small numberof CA s public keys Need to ensure secure distribution only for these few, initial public keys E.g., distribute as part of an operating system, or web browser Firefox: Tools->Options->Privacy & Security->View Certificates->Authorities

  9. Web of trust Obtain public keys in person Key-signing parties Obtain certificates on your public key from people who know you If A knows pkB, and B issued a certificate for C, then C can send that certificate to A What trust assumptions are being made here?

  10. Public repository Store certificates in a central repository E.g., MIT PGP keyserver To find Alice s public key Get all public keys for Alice, along with certificates on those keys Look for a certificate signed by someone you trust whose public key you already have

  11. PKI in practice Does not work quite as well as in theory Proliferation of root CAs Compromises of CAs Revocation Users/browsers may not verify certificates

Related


Key Management and Distribution Techniques in Cryptography

Key Management and Distribution Techniques in Cryptography

sena
Challenges and Progress in Chilean Infrastructure Development

Challenges and Progress in Chilean Infrastructure Development

aster
Drug Product Distribution Procedures and Records

Drug Product Distribution Procedures and Records

mustafa
Infrastructure Development Bank of Zimbabwe (IDBZ) - Financing Zimbabwe's Infrastructure Needs

Infrastructure Development Bank of Zimbabwe (IDBZ) - Financing Zimbabwe's Infrastructure Needs

nathalia
Understanding Normal Distribution and Its Business Applications

Understanding Normal Distribution and Its Business Applications

tansy
Understanding Infrastructure Financing Options and Principles

Understanding Infrastructure Financing Options and Principles

nash
Infrastructure Prioritization Framework and Challenges

Infrastructure Prioritization Framework and Challenges

kafka
Introduction to Public Key Cryptography

Introduction to Public Key Cryptography

kenna
Tamper-Evident Pairing (TEP) Protocol for Secure Wireless Pairing Without Passwords

Tamper-Evident Pairing (TEP) Protocol for Secure Wireless Pairing Without Passwords

quer_sna
Infrastructure Programme Implementation Plan (IPIP) - Module 7 Overview

Infrastructure Programme Implementation Plan (IPIP) - Module 7 Overview

wells
Key Distribution and Management in Cryptography

Key Distribution and Management in Cryptography

kreitzer_k
Effective Management of Transportation and Distribution in the Supply Chain

Effective Management of Transportation and Distribution in the Supply Chain

inga
Understanding Public-Key Cryptography and Its Applications

Understanding Public-Key Cryptography and Its Applications

nbull
Addressing Infrastructure Investment Disparity: Challenges and Solutions

Addressing Infrastructure Investment Disparity: Challenges and Solutions

adne
Challenges and Importance of Infrastructure in Indian Economy

Challenges and Importance of Infrastructure in Indian Economy

rhys
Introducing the New Governor's AFID Infrastructure Grant Program

Introducing the New Governor's AFID Infrastructure Grant Program

maxemili
Enhancing Public Health Workforce for COVID-19 Response Grant Program

Enhancing Public Health Workforce for COVID-19 Response Grant Program

johan
Understanding Binomial Distribution in R Programming

Understanding Binomial Distribution in R Programming

ichabod
Understanding Chi-Square and F-Distributions in Statistics

Understanding Chi-Square and F-Distributions in Statistics

baw_nis
Power Distribution in Data Centers Overview

Power Distribution in Data Centers Overview

lennie
Physical Distribution

Physical Distribution

bronwen
Understanding Multinomial Distribution in Statistical Analysis

Understanding Multinomial Distribution in Statistical Analysis

mercutio
Understanding Data Distribution and Normal Distribution

Understanding Data Distribution and Normal Distribution

alesha
Secure Computation Techniques in RAM Models with Efficient Automation

Secure Computation Techniques in RAM Models with Efficient Automation

terence

More Related Content

Enhancing Animal Telemetry Data Systems for Secure Collaboration
Enhancing Animal Telemetry Data Systems for Secure Collaboration
Indiana Requirements to Secure Election Infrastructure
Indiana Requirements to Secure Election Infrastructure
Enhancing Infrastructure Investment Through Land Value Capture Mechanisms
Enhancing Infrastructure Investment Through Land Value Capture Mechanisms
Infrastructure Delivery Management System (IDMS) Knowledge Circles Module 6: Portfolio Management
Infrastructure Delivery Management System (IDMS) Knowledge Circles Module 6: Portfolio Management
Residential Housing Infrastructure Assistance Program Overview
Residential Housing Infrastructure Assistance Program Overview
Understanding Secure Act 2.0 Key Provisions
Understanding Secure Act 2.0 Key Provisions
Piecemeal Distribution in Partnership Accounts: Surplus Capital Method Example
Piecemeal Distribution in Partnership Accounts: Surplus Capital Method Example
Understanding Negative Binomial Distribution in Probability Theory
Understanding Negative Binomial Distribution in Probability Theory
Introduction to SFTP & PGP Encryption for Secure Data Transfer
Introduction to SFTP & PGP Encryption for Secure Data Transfer
Ensuring Secure Testing Environments in Oregon Education System
Ensuring Secure Testing Environments in Oregon Education System
Actively Secure Arithmetic Computation and VOLE Study
Actively Secure Arithmetic Computation and VOLE Study
Accessing and Utilizing CPCSSN Secure Research Environment (SRE)
Accessing and Utilizing CPCSSN Secure Research Environment (SRE)
Hosting Matters Summary: Infrastructure Development and Governance Framework Update
Hosting Matters Summary: Infrastructure Development and Governance Framework Update
Enhancing Public Services through Open Government Partnership in Georgia
Enhancing Public Services through Open Government Partnership in Georgia
Community Infrastructure Levy Project Planning and Infrastructure Evidence
Community Infrastructure Levy Project Planning and Infrastructure Evidence
Understanding Public Goods in Higher Education
Understanding Public Goods in Higher Education
Secure Network Infrastructure Best Practices
Secure Network Infrastructure Best Practices
Public Health Infrastructure Grant (PHIG) Evaluation Monitoring Assessment
Public Health Infrastructure Grant (PHIG) Evaluation Monitoring Assessment
Progress on Selected Smart Cities in South Africa
Progress on Selected Smart Cities in South Africa
Annual Performance of the DPWI for the 2022/23 Financial Year
Annual Performance of the DPWI for the 2022/23 Financial Year
Strategic Infrastructure Asset Management Plan (SIAMP) Overview
Strategic Infrastructure Asset Management Plan (SIAMP) Overview
Sustainable Infrastructure Procurement Practices in South Africa
Sustainable Infrastructure Procurement Practices in South Africa
Alberta Infrastructure Overview
Alberta Infrastructure Overview
IT Infrastructure Management Solutions Overview
IT Infrastructure Management Solutions Overview