Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Pki for dummies


Published on

Slidedeck used at the Dutch Techdays Event in 2012.

Pki for dummies

  1. 1. PKI for Dummies Alex de Jong Microsoft Freelance
  2. 2. Agenda• PKI Overview• Your own PKI
  3. 3. Public Key Infrastructure (PKI) is a set of hardware, software, people, policies, andprocedures needed to create, manage, distribute, use, store, and revoke digital certificates
  4. 4. Subject Valid from/toIssuer Serial Number
  5. 5. Certificate Extensions• Subject, Serial Number, Issuer, Valid From, Valid To• Public Key• Subject Alternative Names (SANs)• Authority Information Access (AIA)• Certificate Revocation Lists (CRLs)• Enhanced Key Usage
  6. 6. Authentication Encryption Authenticity
  7. 7. 3 Encryption “methods”• Symmetric – 1 encryption key for encryption and decryption• Asymmetric – 2 keys encryption keys: Public & Private• Hashing – Used for Authenticity checking, passwords – Irreversible
  8. 8. Authenticity• Digitally Signed Data – e-mail, documents, this PowerPoint
  9. 9. About the Issuer
  10. 10. DEMOPublic CA’s
  11. 11. Building one of your 0wn3d• Stand alone vs. Enterprise• Design Considerations• Certificate Revocation Lists (CRL’s)
  12. 12. Building one of your 0wn3d• Certificate Templates• Web Services• …
  13. 13. DEMOPrivate CA’s
  14. 14. Enrolling certificates• Web Services• Auto Enrollment• MMC Snap-in
  15. 15. From the client side• Managing your own certificates• Checking the others
  16. 16. DEMOManaging Certificates