Register now to access 7 million high quality study materials (What's Course Hero?) Course Hero is the premier provider of high quality online educational resources. With millions of study documents, online tutors, digital flashcards and free courseware, Course Hero is helping students learn more efficiently and effectively. Whether you're interested in exploring new subjects or mastering key topics for your next exam, Course Hero has the tools you need to achieve your goals.
4 Pages
Creating Certificate Chain
Course: CSCI 5233, Fall 2008School: UH Clear Lake
Rating:
Word Count: 496
Document Preview
Certificate Creating Chain using `Keytool' and `SignCertificate.java' Shamima Rahman July 2005 The Certificate Chain Structure we are going to create in this tutorial will be as follows: rootCA CA1 CA2 serverKey clientKey Follow the following steps to create the Certificate Chain: 1. Create the keystore kstore and the root certifying authority's certificate rootCA first with the following...
Unformatted Document Excerpt
Coursehero >> Texas >> UH Clear Lake >> CSCI 5233Course Hero has millions of student submitted documents similar to the one
below including study guides, practice problems, reference materials, practice exams, textbook help and tutor support.
Course Hero has millions of student submitted documents similar to the one
below including study guides, practice problems, reference materials, practice exams, textbook help and tutor support.
Certificate Creating Chain using `Keytool' and `SignCertificate.java'
Shamima Rahman July 2005
The Certificate Chain Structure we are going to create in this tutorial will be as follows:
rootCA
CA1
CA2
serverKey
clientKey
Follow the following steps to create the Certificate Chain:
1. Create the keystore kstore and the root certifying authority's certificate rootCA first
with the following command>keytool -genkey -v -alias rootca -keyalg RSA -keystore kstore
2. Create Server's certifying authority's initial certificate CA1 >keytool -genkey -v -alias CA1 -keyalg RSA -keystore kstore
3. Sign CA1 with rootCA using SignCertificate.java and store the new signed
certificate as CA1signed >java SignCertificate kstore rootCA CA1 CA1signed
4. Now export the new signed certificate to a file CA1signed.crt >keytool -export -alias CA1signed -keystore kstore -file CA1signed.crt You will notice a new file CA1signed.crt being created in the same directory as the keystore's.
Creating Certificate Chain using `Keytool' and `SignCertificate.java'
5. Then import the file CA1signed.crt back to the keystore kstore as CA1 (Notice here
the certificate alias name to which you are importing the file has to be the same you have created in the at first as Server's Certifying Authority's certificate, in this case CA1) > keytool -import -alias CA1 -keystore kstore -file CA1signed.crt A screenshot of the last three commands mentioned
6. Now if you see the list of keyentries in the keystore kstore you will see 3 entries in
total and also the entry CA1 has Certificate chain length of 2 > keytool -list -v -keystore kstore
Computer Security
UHCL
2
Creating Certificate Chain using `Keytool' `SignCertificate.java'
Now and follow steps 2-5 to create a signed certificate for the Server. Following are the steps you should be performing next-
7. Create an initial certificate serverKey for the Server >keytool -genkey -v -alias serverKey -keyalg RSA -keystore kstore
8. Sign serverKey with CA1 using SignCertificate.java and store the new signed
certificate as serverKeysigned >java SignCertificate kstore CA1 serverKey serverKeysigned
9. Export this new signed certificate serverKeysigned to a file serverKeysigned.crt >keytool -export -alias serverKeysigned -keystore kstore -file serverKeysigned.crt A new file named serverKeysigned.crt will be created as the same way it was created for CA1 before.
10. Import the file serverKeysigned.crt back to the keystore kstore as serverKey
> keytool -import -alias serverKey -keystore kstore -file serverKeysigned.crt
Computer Security
UHCL
3
Creating Certificate Chain using `Keytool' and `SignCertificate.java'
11. Now if you see the list of k...
Find millions of documents on Course Hero - Study Guides, Lecture Notes, Reference Materials, Practice Exams and more.
Course Hero has millions of course specific materials providing students with the best way to expand
their education.
Below is a small sample set of documents:
Below is a small sample set of documents:
UH Clear Lake - CSCI - 5931
Tutorial for Simulation-based Performance Analysis of MANET Routing Protocols in ns-2By Karthik sadasivam1. Introduction Ns-2 is an open source discrete event simulator used by the research community for research in networking [1]. It has support
UH Clear Lake - CSCI - 5931
OCO: An Efficient Method for Tracking Objects in Wireless Sensor Networks T. Andrew Yang Sam Phu Manh Tran Duy Cao Tuan Anh NguyenUniversity of Houston Clear Lake 2700 Bay Area Blvd., Houston, Texas, 77058, US yang@UHCL.eduCorresponding author:
UH Clear Lake - CSCI - 5235
Program Integrity Verification (PIV) in Wireless Sensor Networks (WSN)Based on Park and Shin 2005presented by Therese PaulOutline Introduction to WSN Security issues with WSN Introduce Program Integrity Verification (PIV) Security Fra
UH Clear Lake - CSCI - 5235
Symmetric versus Asymmetric Cryptography Why is it worth presenting cryptography? Top concern in security Fundamental knowledge in computer securityA review for those who have taken the course Computer Security (and Integrity) A need
UH Clear Lake - CSCI - 5235
Security In Wireless Sensor NetworkCHIALING YANGCSCI 5235Abstract Wireless sensor networks are a device that can collect data and its size can range from a few hundred sensors to a few hundred thousand or possibly more [1]. As WSNs can be da
UH Clear Lake - CSCI - 5235
WiMAX and its impact on wireless communicationPresented by Zhen-Yu FangWhat is WiMAX? WiMAX: Worldwide Interoperability for Microwave Access It is a telecommunications technology It is based on IEEE 802.16 standard, which is called Wireless MAN
UH Clear Lake - CSCI - 5235
SNORT Biopsy: A Forensic Analysis on Intrusion Detection SystemBy Asif Syed ChowdhuryWhat is intrusion detection?"A true intrusion detection is simply trying to detect the signs of a network intruder before damage is done to the infrastructure."
UH Clear Lake - CSCI - 5235
Attacks and defense strategies in a wireless local area networkCourse: CSCI5235 Instructor: Dr. Andrew T. Yang Student: Fan YangAgenda What is wireless local area network? 802.11 Wireless security Threats or attacks in wireless local are
UH Clear Lake - CSCI - 5931
IPSec: Authentication Header, Encapsulating Security Payload ProtocolsCSCI 5931 Web Security Edward MurphyIPSec Architecture Set of security services offered by IPSec include Connectionless integrity Data origin authentication Protection aga
UH Clear Lake - CSCI - 5931
Topic: ARP Poisoning attacks Abstract:Student-Name: Rushad ShaikhI will explain some basics about the ARP protocol and ARP poisoning attacks. ARP poisoning is a technique for attacking networks which can be very effective. IP addresses are used f
UH Clear Lake - CSCI - 5931
ARP PoisoningRushad Shaikh CSCI 5931 Web Security Spring 2004ARP Poisoning Attacks Topics Logical Address Physical Address Mapping ARP ARP Cache Table ARP Poisoning Prevent ARP PoisoningLogical address Internetwork address Unique un
UH Clear Lake - CSCI - 5931
Web Service SecurityCSCI5931 Web Security Instructor: Dr. T. Andrew Yang Student: Jue Wang Outline Introduction Web Services Security Model Terminology Web Services Security Specification Relating Web Services Security to Today's Security
UH Clear Lake - CSCI - 5931
IP SpoofingSuneeta ChawlaAbstract: The report explains the IP-spoofing attack as complex technical attack that is made up of several components. In actuality, IP-spoofing is not the attack, but a step in the attack. The attack is actually trust-re
UH Clear Lake - CSCI - 5931
Suneeta Chawla Web Security Presentation Topic : I P Spoofing Date : 03/24/04 I P SpoofingWhat is I P Spoofing? A technique used to gain unauthorized access to computers, whereby the intruder sends messages to a computer with an IP address indi
UH Clear Lake - CSCI - 5931
SSH The `Secure' ShellCourse: CSCI 5931 Web Security Instructor : Dr.YangPresented by Karthik Sadasivam05/18/09 1Secure What. ? `Secure shell is a de facto standard for remote logins and encrypted file transfers.' [SSH communicati
UH Clear Lake - CSCI - 5931
Topic: Vulnerabilities in SNMP implementationsSubmitted By: Harini Varatharajan Abstract: The Simple Network Management Protocol (SNMP) is used extensively to remotely monitor and configure almost all types of modern TCP/IP-enabled devices. While SN
UH Clear Lake - CSCI - 5931
CSCI 5931 Web Security Author: Tarun Lall Presentation abstract Topic: Session HijackingThe presentation explains the Session Hijacking. Session Hijacking is any Security attack, carried out by an Intruder, which attempts to insert commands into a
UH Clear Lake - CSCI - 5931
Session HijackingTarun LallWhat is Session Hijacking TCP Connection Takeover Takeover of a Web Application SessionState ManagementHTTP is Stateless Web Applications need state User Logins Shopping CartsState Management, Cont'dC
UH Clear Lake - CSCI - 5931
Security Vulnerabilities in RPC(csci5931)by Shaheen PattanRPC Security (1)Distributed applications may require a number of security measures, including: Authentication Authorization (access control) Data integrity Data privacyDCE Security
UH Clear Lake - CSCI - 5931
Vulnerabilities in peer to peer communicationsWeb SecuritySravan Kunnuri What is peer to peer communicationPeertopeer is a communications model in which each party has the same capabilities and either party can initiate a communicati
UH Clear Lake - CSCI - 5931
Wireless SecurityPresented by: Amit Kumar Singh Instructor : Dr. T. Andrew Yang Going WirelessRecent technologies include 802.11b,802.11g etc. Most commonly and widely present are 802.11b (11 mbps) 802.11b uses security techniques like
UH Clear Lake - CSCI - 5931
Title: A Stateful Intrusion Detection System for World-Wide Web Servers Authors: Giovanni Vigna, William Robertson, Vishal Kher, Richard A. Kemmerer Department of Computer Science University of California, Santa Barbara Annual Computer Security Appli
UH Clear Lake - CSCI - 5931
A Stateful Intrustion Detection System for Worldwide Web Servers19th Annual Computer Security Applications Conference December 08 12, 2003 Las Vegas, Nevada Vigna G, Robertson W, Kher V, Kemmerer R Department of Computer Science UC, Santa Baraba
UH Clear Lake - CSCI - 5931
WS Security RoadmapDave Tran CSCI5931 Web Security WS Security Roadmap Proposed by IBM and MicrosoftWS Security Roadmap Whatis a Web Service? ". application components whose functionality and interfaces are exposed to potential users through th
UH Clear Lake - CSCI - 5931
Name: Pradeep Rath Topic: Measures to prevent Man-in-the-middle-Attack and their effectiveness AbstractDefinition: Man-in-the-middle attack is a type of attack upon when two users are communicating remotely through internet, exchange public keys to
UH Clear Lake - CSCI - 5234
CSCI 5931 Web Security Your name:Midterm exam (3/10/04) Score:p.1 of 7 / 60.Important: Budget your time! Do not spend too much time on any single question. A. (14 pts) Write, within the parenthesis, the best answer from the given choices: 1. (
UH Clear Lake - CSCI - 5234
CSCI5931 Web SecuritySpring 2004Final Exam5/12/2004Note: This is an open-book exam. Please write your answers within the space provided. If you would need more space to write, feel free to use the back of the pages. In that case, make sure cl
UH Clear Lake - CSCI - 5931
CSCI 5931 Web security Team 1A : Tarun lall & Karthik Sadasivam Questions on the veriSign's Technical Brief: "Building an E-Commerce Trust Infrastructure: SSL Server Certificates and Online Payment Services"1. By offering products and services on
UH Clear Lake - CSCI - 5931
Questions & Answers on the veriSign's Technical Brief:"Building an E-Commerce Trust Infrastructure: SSL Server Certificates and Online Payment Services" 3. To succeed in the fiercely competitive e-commerce marketplace, businesses must become fully a
UH Clear Lake - CSCI - 5931
CSCI 5941 web security Spring 2004 Questions on the veriSign's Technical Brief: "Building an E-Commerce Trust Infrastructure: SSL Server Certificates and Online Payment Services" Group 2B Abdul Mohammed Imtiaz Paniwala Q 4). List and explain three or
UH Clear Lake - CSCI - 5931
5. Four goals were discussed in section 1.B of the article. Availability was not one of them. Should an e-commerce site be concerned with availability? Justify your answer. Sol: Availability is about being able to use the service when needed and with
UH Clear Lake - CSCI - 5931
6 The 2 proposed solutions are digital certificates for web servers and secure online payment management system. Digital certificates can be used for authentication indirectly because it is used to identify the server in the SSL handshakes. Once SSL
UH Clear Lake - CSCI - 5931
8. Explain why symmetric cryptography is considered as impractical in today's webbased systems. Traditional symmetric cryptographic systems are based on the idea of a shared secret. In such a system, twp parties that want to communicate securely firs
UH Clear Lake - CSCI - 5931
Team 5 a. Amit Kumar Singh Sai Jagadish Maddikayala. 9. Explain why a hybrid approach of combining both public-key and traditional symmetric cryptography is used in modern cryptographic systems. The reason for using hybrid approach is that public-key
UH Clear Lake - CSCI - 5931
Edward Murphy CSCI 5931 Web Security Midterm Questions 10) What is the Key Management Problem in the context of symmetric and public key cryptography? Symmetric key cryptography is based on the idea of a shared secret, 2 parties agree on using a sing
UH Clear Lake - CSCI - 5234
CSCI 5931 Web security Team 1A : Tarun lall & Karthik Sadasivam Questions on the veriSign's Technical Brief: "Building an E-Commerce Trust Infrastructure: SSL Server Certificates and Online Payment Services"1. By offering products and services on
UH Clear Lake - CSCI - 5234
Questions & Answers on the veriSign's Technical Brief:"Building an E-Commerce Trust Infrastructure: SSL Server Certificates and Online Payment Services" 3. To succeed in the fiercely competitive e-commerce marketplace, businesses must become fully a
UH Clear Lake - CSCI - 5234
CSCI 5941 web security Spring 2004 Questions on the veriSign's Technical Brief: "Building an E-Commerce Trust Infrastructure: SSL Server Certificates and Online Payment Services" Group 2B Abdul Mohammed Imtiaz Paniwala Q 4). List and explain three or
UH Clear Lake - CSCI - 5234
5. Four goals were discussed in section 1.B of the article. Availability was not one of them. Should an e-commerce site be concerned with availability? Justify your answer. Sol: Availability is about being able to use the service when needed and with
UH Clear Lake - CSCI - 5234
6 The 2 proposed solutions are digital certificates for web servers and secure online payment management system. Digital certificates can be used for authentication indirectly because it is used to identify the server in the SSL handshakes. Once SSL
UH Clear Lake - CSCI - 5234
Group 4 ATeam members: Rushad Shaikh & Pradeep Rath Q.7 In section II.A, it was stated that "This section presents background technical information on cryptographic systems, including Public Key Cryptography, the system underlying Secure Sockets Lay
UH Clear Lake - CSCI - 5234
8. Explain why symmetric cryptography is considered as impractical in today's webbased systems. Traditional symmetric cryptographic systems are based on the idea of a shared secret. In such a system, twp parties that want to communicate securely firs
UH Clear Lake - CSCI - 5234
Cryptography: an overviewcsci5233 computer security & integrity1Outline Securitycomponents Security mechanisms: Symmetric Cryptography Asymmetric Cryptography Cryptographic Checksums Digital Signaturescsci5233 computer security & inte
UH Clear Lake - CSCI - 5234
CSCI 5931 Web Security Supplemental Notes for Chapter 10 of the GS book: TunnelServer.java NOTE: Correction! The diagram below illustrates how the two instances of TunnelServer, one on the client machine (that's where JDBCTest.java is located), and
UH Clear Lake - CSCI - 5234
Bishop: Chapter 27 System Security1OutlineVarious systems require different configurations and administration.web server system, development system, corporate data system, . Policy System AdministrationNetworks Users Authentication
UH Clear Lake - CSCI - 5939
Web Service and SecurityLilly Wang1Agenda Brief introduction to web service Web service security Wireless web service2Software Evolution Main frame based TwoTier Client Server Webbased Ntier Client Server Web centric hig
UH Clear Lake - CSCI - 5939
Overview of J2ME and PocketPC Support for both in the PDA, mobile phone market Securing J2ME/MIDP applications using Bouncy Castle Crypto APIsPresented by: Atul Shrivastava CSCI 5939 Instructor: Dr. Yang Date: 27th March 2003 1What is J2ME?
UH Clear Lake - CSCI - 5939
WAP Public Key InfrastructureBy: Juan Cao For: CSCI5939 Instructor: Dr. T. Andrew Yang Date: 04/03/200305/18/091What is PKI?Public-Key Infrastructure (PKI) is the combination of software, encryption technologies, and services that enables
UH Clear Lake - CSCI - 5939
Evaluation of a Publish/Subscribe System for Collaboration and Mobile Working Collaborative Advertising over Internet with Agents Independent Study: Wireless Security Presented by: Lin Bei Instructor: Dr.Yang Date: 04.05.2003Collaborative Mobile W
UH Clear Lake - CSCI - 5939
Challenges of Wireless Security TCP in WiredCumWireless EnvironmentsPresented by Vijaiendra Singh Bhatia CSCI 5939 Independent Study Wireless Security Introduction Most of the wireless technologies were not designed with security as top pri
UH Clear Lake - CSCI - 5939
NETWORK WORLD NEWSLETTER: KEITH SHAW ON MOBILE COMPUTING02/06/03Today's focus: Gartner: 2002 not so hot for PDAsDear Andrew Yang,In this issue:* PDA shipment fell 9.1% last year* Links related to Mobile Computing* Featured reader resource
UH Clear Lake - CSCI - 5234
An Online Grades Calculation and Reporting ApplicationCourse: Web Security Instructor: Dr. Yang Student: Tan Nguyen Hung TranUML DiagramUser -UserID -UserName -Password -Role -FullName * * 1 1 Grades * GradingSystem -CourseID -Category -Percenta
UH Clear Lake - CSCI - 5234
Web-based Console for Controlling a Wireless Sensor Network (WeConWSN)Course: Web Security Instructor: Dr. Andrew T. Yang Students: Dung Nguyen Toan Le3-Tier design3-Tier designPresentation tier: provide Nodes configuration and User management
UH Clear Lake - CSCI - 5234
Team 5 a. Amit Kumar Singh Sai Jagadish Maddikayala. 9. Explain why a hybrid approach of combining both public-key and traditional symmetric cryptography is used in modern cryptographic systems. The reason for using hybrid approach is that public-key
UH Clear Lake - CSCI - 5234
Edward Murphy CSCI 5931 Web Security Midterm Questions 10) What is the Key Management Problem in the context of symmetric and public key cryptography? Symmetric key cryptography is based on the idea of a shared secret, 2 parties agree on using a sing
Allan Hancock College - MGT - 2201
MGT 2201 Administrative ManagementModule 6 Conflict, Stress and Group Dynamics Amongst Administrative Employees Where have we been? Basic principles of management Administrative management and changes therein Recruiting, selecting, de
Allan Hancock College - MGT - 2201
MODULE 3Recruitment, Selection and Development of Administrative Employees Where have we been?Where have we been? Basic management principles Systems view of management Functions of management Skills required by managers Definition and
Allan Hancock College - NSC - 1951
NSC 1951 Biophysical Science Foundations Mid-Semester Physics Exam Semester 1 2006 Date: Time: Duration: Friday 31st March, 2006 7.50 am to 8.55 am 60 minutes 30 multiple choice /30 5 Short Ans Ques /10 TOTAL /40Number of questions:Material Exami
Allan Hancock College - NSC - 1951
NSC1951 Biophysical Science Foundations End - Semester Chemistry & Biochemistry Exam Semester 1 2006 Date: Time: Duration: Wednesday 21st June, 2006 9.00am Perusal: Working: 10 minutes 2 hoursVenue: Toowoomba: Rumours ~ Upstairs Wide Bay: To be adv
Allan Hancock College - NSC - 1951
NSC1951 Biophysical Science Foundations Physics Lectures 1-9 Sample Mid-Semester Exam Questions 1. In relation to sound, the number of complete waves per second is the: a) Velocity b) Amplitude c) Frequency d) Intensity 2. The crystalline lens in the
Allan Hancock College - NSC - 1951
NSC1951 Biophysical Science Foundations Physics Lectures 1-9 Sample Mid-Semester Exam Answers 1. c 2. b 3. d 4. a 5. a 6. a 7. b 8. b 9. a 10. e 11. a 12. b 13. d 14. a 15. a 16. Inertia is the resistance to a change in the state of rest or motion of