Understanding PKI & Certificate Security in Computer Networks - Prof. Patrick Mcdaniel, Study notes of Computer Science

An introduction to public key infrastructure (pki) and certificate security in computer networks. It covers the concept of certificates, the role of certificate authorities (cas), the process of certificate validation, and the risks and challenges associated with pki. The document also touches upon the concept of public key infrastructure and its role in securely distributing public keys (certificates), the concept of certificate revocation, and the importance of trust in pki.

Typology: Study notes

Pre 2010

Uploaded on 09/24/2009

koofers-user-42d
koofers-user-42d 🇺🇸

10 documents

1 / 20

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
3YSTEMSAND)NTERNET
)NFRASTRUCTURE3ECURITY
I
I
.ETWORKAND3ECURITY2ESEARCH#ENTER
$EPARTMENTOF#OMPUTER3CIENCEAND%NGINEERING
0ENNSYLVANIA3TATE5NIVERSITY5NIVERSITY0ARK0!
CSE543 - Introduction to Computer and Network Security Page
CSE543 - Introduction to
Computer and Network Security
Module:
Public Key Infrastructure
Professor Patrick McDaniel
Fall 2008
1
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14

Partial preview of the text

Download Understanding PKI & Certificate Security in Computer Networks - Prof. Patrick Mcdaniel and more Study notes Computer Science in PDF only on Docsity!

3YSTEMSAND)NTERNET

)NFRASTRUCTURE3ECURITY

I I .ETWORKAND3ECURITY2ESEARCH#ENTER $EPARTMENTOF#OMPUTER3CIENCEAND%NGINEERING 0ENNSYLVANIA3TATE5NIVERSITY 5NIVERSITY0ARK0! CSE543 - Introduction to Computer and Network Security Module: Public Key Infrastructure Professor Patrick McDaniel Fall 2008

Meeting Someone New

  • (^) Anywhere in the Internet

Why do I trust the certificate?

  • (^) A collections of “root” CA certificates

‣ … baked into your browser

‣ … vetted by the browser manufacturer

‣ … supposedly closely guarded (yeah, right)

  • (^) Root certificates used to validate certificate

‣ Vouches for certificate’s authenticity

CA (signs) Certificate Signature

Public Key Infrastructure

• System to “ securely distribute public keys (certificates) ”

‣ Q: Why is that hard?

• Terminology:

‣ Alice signs a certificate for Bob’s name and key

  • (^) Alice is issuer, and Bob is subject

‣ Alice wants to find a path to Bob’s key

  • (^) Alice is verifier, and Bob is target

‣ Anything that has a public key is a principal

‣ Anything trusted to sign certificates is a trust anchor

  • (^) Its certificate is a root certificate

Certificate Validation

… … … Root CA CA2 CA CA11 CA12 CA1n CA21 CA Cert11a Cert11b Cert11c … … … … Certificate Signature

PKI and Revocation

• Certificate may be revoked before expiration

‣ Lost private key

‣ Compromised

‣ Owner no longer authorized

• Revocation is hard …

‣ The “anti-matter” problem

‣ Verifiers need to check revocation state

  • (^) Loses the advantage of off-line verification

‣ Revocation state must be authenticated

10 Risks of PKI

  • (^) This is an overview of one of many perspectives of PKI technologies ‣ PKI was, like many security technologies, claimed to be a panacea ‣ It was intended to solve a very hard problem: build trust on a global level ‣ Running a CA -- “license to print money”
  • (^) Basic premise: ‣ Assertion #1 - e-commerce does not need PKI ‣ Assertion #2 - PKI needs e-commerce
  • (^) Really talking about a full PKI (everyone has certs.)

Risk 1 - Who do we trust, and for what?

  • (^) Argument: CA is not inherently trustworthy ‣ Why do/should you trust a CA? ‣ In reality, they defer all legal liability for running a bad CA ‣ Risk in the hands of the certificate holder
  • (^) Counter-Argument: Incentives ‣ Any CA caught misbehaving is going to be out of business tomorrow ‣ This scenario is much worse than getting sued ‣ Risk held by everybody , which is what you want

Aside: TEMPEST

  • Transient Electromagnetic Pulse Surveillance Technology ‣ Monitor EMF emanations to reconstruct signal ‣ For example, a video monitor normally exist at around 55- MHz, and can be picked up as far as one kilometer away. ‣ ... or by a guy in a van across the street, e.g., steal private key.
  • Generally, this is the domain of spy/national security issues
  • (^) Much classified work on signal eavesdropping and prevention

Risk 3 - How secure is the verif(ier)?

  • (^) Argument: the computer that verifies your credential is fundamentally vulnerable ‣ Everything is based on the legitimacy of the verifier root public key (integrity of certificate files) ‣ Browsers transparently use certificates
  • (^) Counter-Argument: this is the price of technology ‣ (^) You have to accept some risk in order to get benefit ‣ Will encourage people to use only safe technology
  • (^) Q: What’s in your browser?

Risk 5 - Is the CA an authority?

  • (^) Argument: there are things in certificates that claim authenticity and authorization of which they have no dominion ‣ “rights” (such as the right to perform SSL) - this confuses authorization authority with authentication authority ‣ DNS, attributes -- the CA is not the arbiter of these things
  • (^) Counter-Argument: this is OK, because it is part of the implicit charge we give our CA -- we implicitly accept the CA as authority in several domains

Risks 6 and 7

  • (^) 6 : Is the user part of the design? ‣ Argument: too many things hidden in use, user has no ability to affect or see what is going on ‣ Counter-Argument: too sophisticated for user to understand ‣ Ex.: Hosted website has cert. of host(er), not page
  • (^) 7 : Was it one CA or CA+RA? ‣ Argument: separation of registration from issuance allows forgery - (^) e.g., RA handles vetting, CA makes certificates, so, you better have good binding between these entities or bad things can happen ‣ Counter-Argument: this is an artifact of organization, only a problem when CA is bad (you are doomed anyway)

Risk 9 - How secure cert. practices?

  • (^) Argument: certificates have to be used properly to be secure ‣ Everything is based on the legitimacy of the verifier root public key, protection of its key ‣ Lifetime & revocation have to be done
  • (^) Counter-Argument: this is the price of technology ‣ (^) You have to accept some risk in order to get benefit ‣ Will encourage people to use only safe technology

Risk 10 - Why are we using PKI?

  • (^) Argument: We are trying to solve a painful problem: authenticating users. ‣ However, certificates don’t really solve the problem, just give you another tool to implement it ‣ Hence, it is not a panacea ‣ No delivered on it promises
  • (^) Counter-argument?