August 8, 2009
<ul><li>Security is the condition of being protected against danger or loss. </li></ul><ul><li>ASPECT OF SECURITY </li></u...
<ul><li>SSL –Secured Socket Layer </li></ul><ul><li>Protocol for data encryption . </li></ul><ul><li>Open & nonproprietary...
<ul><li>Infrastructure -uses digital certificates as an authentication mechanism.  </li></ul><ul><li>Manage certificates a...
Hash  Function  Jrf843kjfgf*£$&Hdif*7oUsd*&@:<CHDFHSD (** This is a really long message about Bill’s… Asymmetric Encryptio...
Verifying a Digital Signature Jrf843kjf gf*£$&Hd if*7oUsd *&@:<CHD FHSD(** Py75c%bn&*) 9|fDe^bDFaq #xzjFr@g5= &nmdFg$5kn v...
03/19/08 <ul><li>Certificate: </li></ul><ul><li>body of data placed in a message to serve as </li></ul><ul><li>Proof of th...
03/19/08 <ul><li>Certificate Authority  : </li></ul><ul><li>trusted organization that issues certificates for </li></ul><u...
August 8, 2009
August 8, 2009 Signature algorithm identifier validity signature Subject public key info x.509 VERSION CERTIFICATE SERIAL ...
August 8, 2009
<ul><li>  WELCOME TO TKT CERT </li></ul><ul><li>HOME   LOGIN     POLICY  RENEW GUIDELINES  MYCERTIFICATE </li></ul><ul><li...
<ul><li>Information exchange with this site can,t be viewed or changed by third party.. </li></ul><ul><li>Do you want to c...
<ul><li>HOME        LOGIN   POLICY  RENEW  GUIDELINE  MYCERTIFICATE    </li></ul><ul><li>  LOGIN  </li></ul><ul><li>User N...
<ul><li>HOME    LOGIN      POLICY  RENEW GUIDELINE MYCERTIFICATE  </li></ul><ul><li>Welcome to your Account of TKT cert.co...
<ul><li>LOST  PASSPHRASE </li></ul><ul><li>Email Address: </li></ul><ul><li>Date of birth:  </li></ul>Next
LOST  PASSPHRASE <ul><li>Question 1 st   : </li></ul><ul><li>Question 3 rd  :    </li></ul><ul><li>Question 5 th   : </li>...
<ul><li>TKTCert  will  randomly generate a complex passphrase and send it to clients Email-address.. </li></ul>August 8, 2...
<ul><li>HOME  LOGIN       POLICY  RENEW  GUIDELINES  MYCERTIFICATE </li></ul><ul><li>TKT CERT certificate will be shown: <...
REGISTRATION FORM August 8, 2009
<ul><li>HOME     LOGIN  POLICY  RENEW  GUIDELINES  MYCERTIFICATE </li></ul><ul><li>Your password has been updated and your...
<ul><li>Edit your Profile </li></ul><ul><li>Change your Passphrase </li></ul>
New Profile: <ul><li>First name  : Last name :  </li></ul><ul><li>  Email address : </li></ul><ul><li>  State  :  </li></u...
<ul><li>  </li></ul><ul><li>My profile  details is shown: </li></ul><ul><li>First name  : abc   Last name </li></ul><ul><l...
August 8, 2009
August 8, 2009
August 8, 2009
August 8, 2009
August 8, 2009
August 8, 2009
August 8, 2009
August 8, 2009
August 8, 2009
August 8, 2009
August 8, 2009
August 8, 2009
August 8, 2009
August 8, 2009
August 8, 2009
August 8, 2009
August 8, 2009
Database Schema August 8, 2009 Registration Repository Login Repository Registration no Registration form CSR Date Date of...
August 8, 2009 Certificate Repository Revocation Repository Certificate Serial No Type of Certificate Customer_id Date of ...
August 8, 2009 Signature Repository Trusted root Certificate Repository Message_id Signature Validity Algorithm Certificat...
Platform & software tools required : <ul><li>Os  : LINUX RHEL5 </li></ul><ul><li>Language :PHP/HTML </li></ul><ul><li>Data...
<ul><li>Protocols   :PGP </li></ul><ul><li>IDE used  :ECLIPSE </li></ul><ul><li>Tools&Utilities : GNUPG, GPG,OPENSSL,DOVEC...
Upcoming SlideShare
Loading in...5
×

Digital signature

786
-1

Published on

Published in: Art & Photos, Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
786
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
51
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Digital signature

  1. 1. August 8, 2009
  2. 2. <ul><li>Security is the condition of being protected against danger or loss. </li></ul><ul><li>ASPECT OF SECURITY </li></ul><ul><li>Authentication </li></ul><ul><li>Privacy </li></ul><ul><li>Integrity </li></ul><ul><li>No Repudiation </li></ul>03/19/08
  3. 3. <ul><li>SSL –Secured Socket Layer </li></ul><ul><li>Protocol for data encryption . </li></ul><ul><li>Open & nonproprietary protocol . </li></ul><ul><li>Current implementation-OpenSSL </li></ul><ul><li>used for: </li></ul><ul><ul><ul><ul><li>data-encryption </li></ul></ul></ul></ul><ul><ul><ul><ul><li>server authentication </li></ul></ul></ul></ul><ul><ul><ul><ul><li>data integrity </li></ul></ul></ul></ul><ul><ul><ul><ul><li>client authentication </li></ul></ul></ul></ul>03/19/08
  4. 4. <ul><li>Infrastructure -uses digital certificates as an authentication mechanism. </li></ul><ul><li>Manage certificates and their associated keys. </li></ul><ul><li>Provides public-key encryption & digital signature services. </li></ul><ul><li>Establishes and maintains a trustworthy networking environment. </li></ul>August 8, 2009
  5. 5. Hash Function Jrf843kjfgf*£$&Hdif*7oUsd*&@:<CHDFHSD (** This is a really long message about Bill’s… Asymmetric Encryption Message or File Digital Signature 128 bits Message Digest Calculate a short message digest from even a long input using a one-way message digest function (hash) Signatory’s private key Py75c%bn&*)9|fDe^bDFaq#xzjFr@g5=&nmdFg$5knvMd’rkvegMs” private
  6. 6. Verifying a Digital Signature Jrf843kjf gf*£$&Hd if*7oUsd *&@:<CHD FHSD(** Py75c%bn&*) 9|fDe^bDFaq #xzjFr@g5= &nmdFg$5kn vMd’rkvegMs” Asymmetric decryption (e.g. RSA) Everyone has access to trusted public key of the signatory Signatory’s public key Digital Signature This is a really long message about Bill’s… Same hash function (e.g. MD5, SHA…) Original Message Py75c%bn&*) 9|fDe^bDFaq #xzjFr@g5= &nmdFg$5kn vMd’rkvegMs” ? == ? Are They Same?
  7. 7. 03/19/08 <ul><li>Certificate: </li></ul><ul><li>body of data placed in a message to serve as </li></ul><ul><li>Proof of the sender’s authenticity. </li></ul><ul><li>consists of encrypted information that associates </li></ul><ul><li>a public key with the true identity of an individual </li></ul><ul><li>Includes the identification and electronic signature of </li></ul><ul><li>Certificate Authority (CA). </li></ul><ul><li>Includes serial number and period of time when the </li></ul><ul><li>certificate is Valid </li></ul>
  8. 8. 03/19/08 <ul><li>Certificate Authority : </li></ul><ul><li>trusted organization that issues certificates for </li></ul><ul><li>both servers and clients. </li></ul><ul><li>create digital certificates that securely bind the names of users to their public keys. </li></ul>Two types of CA: * Commercial CA * Self-certified private CA
  9. 9. August 8, 2009
  10. 10. August 8, 2009 Signature algorithm identifier validity signature Subject public key info x.509 VERSION CERTIFICATE SERIAL NO ALGORITHM PARAMETER ISSUER NAME NOT BEFORE NOT AFTER SUBJECT NAME ALGORITHMS PARAMETERS KEY ISSUER UNIQUE IDENTIFIER SUBJECT UNIQUE IDENTIFIER EXTENSION ALGORITHMS PARAMETERS ENCRYPTED
  11. 11. August 8, 2009
  12. 12. <ul><li> WELCOME TO TKT CERT </li></ul><ul><li>HOME LOGIN POLICY RENEW GUIDELINES MYCERTIFICATE </li></ul><ul><li>TKTCert is a Web of Trust . It is a certificate Authority Which provides digital certificates to clients who need security at optimum level.. </li></ul><ul><li> </li></ul>
  13. 13. <ul><li>Information exchange with this site can,t be viewed or changed by third party.. </li></ul><ul><li>Do you want to continue?? </li></ul>YES NO VIEW CERTIFICATE
  14. 14. <ul><li>HOME LOGIN POLICY RENEW GUIDELINE MYCERTIFICATE </li></ul><ul><li> LOGIN </li></ul><ul><li>User Name: </li></ul><ul><li>Passphrase : </li></ul><ul><li>[ sign up for new account? ] [ lost your password? ] </li></ul>LOGIN
  15. 15. <ul><li>HOME LOGIN POLICY RENEW GUIDELINE MYCERTIFICATE </li></ul><ul><li>Welcome to your Account of TKT cert.com </li></ul><ul><li>ABOUT ME </li></ul><ul><li> MY DETAILS </li></ul><ul><li>TYPES OF CERTIFICATES </li></ul><ul><li>PURPOSE </li></ul><ul><li>GUIDELINES </li></ul>
  16. 16. <ul><li>LOST PASSPHRASE </li></ul><ul><li>Email Address: </li></ul><ul><li>Date of birth: </li></ul>Next
  17. 17. LOST PASSPHRASE <ul><li>Question 1 st : </li></ul><ul><li>Question 3 rd : </li></ul><ul><li>Question 5 th : </li></ul>NEXT
  18. 18. <ul><li>TKTCert will randomly generate a complex passphrase and send it to clients Email-address.. </li></ul>August 8, 2009
  19. 19. <ul><li>HOME LOGIN POLICY RENEW GUIDELINES MYCERTIFICATE </li></ul><ul><li>TKT CERT certificate will be shown: </li></ul>
  20. 20. REGISTRATION FORM August 8, 2009
  21. 21. <ul><li>HOME LOGIN POLICY RENEW GUIDELINES MYCERTIFICATE </li></ul><ul><li>Your password has been updated and your loginId has been notified of the change !! </li></ul>
  22. 22. <ul><li>Edit your Profile </li></ul><ul><li>Change your Passphrase </li></ul>
  23. 23. New Profile: <ul><li>First name : Last name : </li></ul><ul><li> Email address : </li></ul><ul><li> State : </li></ul><ul><li>Country : </li></ul><ul><li>Company name : </li></ul><ul><li>Period of validity : </li></ul>August 8, 2009
  24. 24. <ul><li> </li></ul><ul><li>My profile details is shown: </li></ul><ul><li>First name : abc Last name </li></ul><ul><li>Email address : [email_address] </li></ul><ul><li>State : Maharashtra </li></ul><ul><li>Country : India </li></ul><ul><li>Company name : IBM </li></ul><ul><li>Period of validity : 30 days. </li></ul>
  25. 25. August 8, 2009
  26. 26. August 8, 2009
  27. 27. August 8, 2009
  28. 28. August 8, 2009
  29. 29. August 8, 2009
  30. 30. August 8, 2009
  31. 31. August 8, 2009
  32. 32. August 8, 2009
  33. 33. August 8, 2009
  34. 34. August 8, 2009
  35. 35. August 8, 2009
  36. 36. August 8, 2009
  37. 37. August 8, 2009
  38. 38. August 8, 2009
  39. 39. August 8, 2009
  40. 40. August 8, 2009
  41. 41. August 8, 2009
  42. 42. Database Schema August 8, 2009 Registration Repository Login Repository Registration no Registration form CSR Date Date of Registration Customer_id Login Name Password Registration no
  43. 43. August 8, 2009 Certificate Repository Revocation Repository Certificate Serial No Type of Certificate Customer_id Date of Issue Expire Date Registration no certificate Certificate serial no Expire Date Revocation Date Certificate
  44. 44. August 8, 2009 Signature Repository Trusted root Certificate Repository Message_id Signature Validity Algorithm Certificate Serial no Root_id Certificate Serial no CA name Date of Publish Certificate
  45. 45. Platform & software tools required : <ul><li>Os : LINUX RHEL5 </li></ul><ul><li>Language :PHP/HTML </li></ul><ul><li>Database :MySQL </li></ul><ul><li>Server :Apache-Web Server </li></ul>
  46. 46. <ul><li>Protocols :PGP </li></ul><ul><li>IDE used :ECLIPSE </li></ul><ul><li>Tools&Utilities : GNUPG, GPG,OPENSSL,DOVECOT </li></ul>
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×