• Document: Digital Signatures and PKI
  • Size: 1.21 MB
  • Uploaded: 2019-02-13 08:21:25
  • Status: Successfully converted


Some snippets from your converted document:

PKI Knowledge Dissemination Program Digital Signatures and PKI Centre for Development of Advanced Computing (C-DAC) Bangalore Under the Aegis of Controller of Certifying Authorities (CCA) Government of India 1 PKI Knowledge Dissemination Program Agenda  Dimensions of PKI  Paper World Vs Electronic World  Why Digital Signature?  What is Digital Signature?  Achieving Confidentiality  What is Digital Signature Certificate?  Certifying Authority & Trust Model  Certificate Issuance, Types, Classes  Certificate Life Cycle Management and Validation Methods  Risks and Precautions with DS  Policy and Legal Aspects of PKI  Case Study  PKI Applications in India 2 PKI Knowledge Dissemination Program Dimensions of PKI • PKI – Public Key Infrastructure ecosystem is an intersection of: • Cryptography (Math) & Technology – Cryptographers/Researchers • Policy & Law – PKI System & Users • Implementation – PKI System Developer PKI Knowledge Dissemination Program Technology Perspective PKI Knowledge Dissemination Program Paper Records v/s Electronic Records PKI Knowledge Dissemination Program Paper Records v/s Electronic Records Paper Record Electronic Record Document Form Physical Digital Very easy to make No Yes copies Very fast distribution No Yes Archival and Challenging Easy Retrieval Copies are as good as No. Copies are easily Yes original distinguishable Easily modifiable No Yes Environmental No Yes Friendly PKI Knowledge Dissemination Program Trust-worthiness in Transactions The following properties must be assured: Privacy (Confidentiality): Ensuring that only Authorized persons should read the Data/Message/Document Authenticity: Ensuring that Data/Message/Document are genuine Integrity : Ensuring that Data/Message/Document are unaltered by unauthorized person during transmission Non-Repudiation: Ensuring that one party of a transaction cannot deny having sent a message 7 PKI Knowledge Dissemination Program Paper Records v/s Electronic Records Paper Record Electronic Record Privacy (Confidentiality) Sealed Envelope Digital Envelope Authenticity Hand Signature Digital Signature Integrity Hand Signature Digital Signature Non-Repudiation Hand Signature Digital Signature but it is Challenging PKI Knowledge Dissemination Program The Scenario Insecure Channel PKI Knowledge Dissemination Program Threats: Packet Sniffing telnet foo.bar.org username: don password: *** m-y-p-a-s-s-w-o-r-d d-o-n Breach of Confidentiality PKI Knowledge Dissemination Program Threats: Data Alteration Deposit 1,00,000 Deposit 1 in Veeru’s in Veeru’s Account Account and 99,999 in Gabbar’s Account Customer Bank Breach of Integrity PKI Knowledge Dissemination Program Threats: Spoofing I’m Veeru Gabbar Send Me all Corporate Correspondence with ‘abc’. Jai Breach of Authenticity Veeru PKI Knowledge Dissemination Program Why Digital Signature? PKI Knowledge Dissemination Program Why Digital Signatures? • To provide Authenticity, Integrity and Non-repudiation to electronic documents • To enable the use of Internet as the safe and secure medium for e- Commerce and e-Governance PKI Knowledge Dissemination Program Mathematical Perspective PKI Knowledge Dissemination Program Major Components of Digital Signature • Major cryptographic components for creating Digital Signature are: – Hash Functions – Asymmetric Key Cryptography PKI Knowledge Dissemination Program Hash Function • A hash function is a cryptographic mechanism that operates as one-way function  Creates a digital representation or "fingerprint“ (Message Digest)  Fixed size output  Change to a message produces different digest Examples : MD5 , Secure Hash

Recently converted files (publicly available):