This presentation discusses public key distribution and describes four common methods: public announcement, public directory, public key authority, and public key certificates. Public announcement allows users to broadcast their public keys but is vulnerable to forgery. A public directory provides a trusted central location for keys but can be tampered with. A public key authority further secures the directory by requiring validation through its public key. Public key certificates bind identities to keys with a digital signature from a certificate authority, allowing verification without real-time access to the authority.

1. Welcome to My Presentation!!!
Prepared By:
Md. Azaharul Islam Asik
Studying…
Dept. of Computer Science and Engineering
Jessore University of Science & Technology

2. Public Key Distribution

3. What is Public-Key?
 In public-key cryptography, everyone has access to everyone’s public-key;
Public keys are available to the public.

4. Distribution of Public Keys
 It can be considered as using one of:
 Public announcement
 Public directory
 Public key authority
 Public key certificates

5. Public Announcement
 Users distribute public keys to recipients or broadcast to community
at large.
 PGP keys to email messages or post to news groups or email list.
 Major weakness is forgery
 Anyone can create a key claiming to be someone else and
broadcast it.
 Until is discovered can masquerade as claimed user.

6. Public Announcement
A B
PUa
PUa
PUa
.
.
.
PUb
PUb
PUb
.
.
.
Figure-1: Public Announcement

7. Public Available Directory
 Can obtain greater security by registering keys with a public
directory
 Directory must be trusted with properties:
• contains {name, public-key} entries
• participants register securely with directory
• participants can replace key at any time
• directory is periodically published
• directory can be accessed electronically
 Still vulnerable to tampering or forgery

8. Public Available Directory
Public-Key
Directory
User
B
User
A
PUa PUb
Figure-2: Public Key Directory

9. Publicly-Key Authority
 Improve security by tightening control over distribution of keys
directory.
 Has properties of directory
 And requires users to know public key for the directory.
 Then the users interact with directory to obtain any desired public
key securely
• Does require real-time access to directory when keys are needed.
• May be vulnerable to tampering.

10. Publicly-Key Authority
Public-Key
Authority
A B
Figure-3: Public-Key Authority
(3)E(PUb, [IDA || N1])
(6)E(PUa, [N1 || N1])
(7)E(PUb, N2)

11. Publicly-Key Certificates
 Certificates allow key exchange without real time access to public
key-authority.
 A certificate binds identity to public key
• Usually with other info such as period of validity, rights of use
etc
 With all contents signed by a trusted Public-Key or Certificate
Authority (CA)
 Can be verified by anyone who knows the public-key authorities
public-key.

12. Publicly-Key Certificates
Certificate
Authority
A B
PUa PUb
CA
CB
Figure-4: Public-Key Certificates

13. Any Question?
justianasik@gmail.com

14. Thank You Everyone!!!