Week Ten Lecture - Security+ Guide to Network Security...

Info iconThis preview shows pages 1–9. Sign up to view the full content.

View Full Document Right Arrow Icon
Security+ Guide to Network Security Fundamentals, Third Edition Chapter 12 Applying Cryptography
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Security+ Guide to Network Security Fundamentals, Third Edition Objectives Define digital certificates List the various types of digital certificates and how they are used Describe the components of Public Key Infrastructure (PKI) List the tasks associated with key management Describe the different cryptographic transport protocols 2
Background image of page 2
Security+ Guide to Network Security Fundamentals, Third Edition Digital Certificates Using digital certificates involves: – Understanding their purpose – Knowing how they are authorized, stored, and revoked – Determining which type of digital certificate is appropriate for different situations 3
Background image of page 3

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Security+ Guide to Network Security Fundamentals, Third Edition Defining Digital Certificates Digital certificate – Can be used to associate or “bind” a user’s identity to a public key – The user’s public key that has itself been “digitally signed” by a reputable source entrusted to sign it Digital certificates make it possible for Alice to verify Bob’s claim that the key belongs to him When Bob sends a message to Alice he does not ask her to retrieve his public key from a central site – Instead, Bob attaches the digital certificate to the message 4
Background image of page 4
Security+ Guide to Network Security Fundamentals, Third Edition Defining Digital Certificates (continued) A digital certificate typically contains the following information: – Owner’s name or alias – Owner’s public key – Name of the issuer – Digital signature of the issuer – Serial number of the digital certificate – Expiration date of the public key 5
Background image of page 5

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Security+ Guide to Network Security Fundamentals, Third Edition Authorizing, Storing, and Revoking Digital Certificates Certificate Authority (CA) – An entity that issues digital certificates for others – A user provides information to a CA that verifies her identity – The user generates public and private keys and sends the public key to the CA – The CA inserts this public key into the certificate 6
Background image of page 6
Security+ Guide to Network Security Fundamentals, Third Edition Authorizing, Storing, and Revoking Digital Certificates (continued) Certificate Revocation List (CRL) – Lists revoked certificates – Can be accessed to check the certificate status of other users – Most CRLs can either be viewed or downloaded directly into the user’s Web browser Certificate Repository (CR) – A publicly accessible directory that contains the certificates and CRLs published by a CA – CRs are often available to all users through a Web browser interface – https://certs.godaddy.com/anonymous/repository.seam 7
Background image of page 7

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Security+ Guide to Network Security Fundamentals, Third Edition Types of Digital Certificates Digital certificates can also be used to: – Encrypt channels to provide secure communication – Encrypt messages for secure Internet e-mail communication
Background image of page 8
Image of page 9
This is the end of the preview. Sign up to access the rest of the document.

This note was uploaded on 04/05/2011 for the course CINT 251 taught by Professor Endris during the Spring '11 term at Ivy Tech Community College.

Page1 / 32

Week Ten Lecture - Security+ Guide to Network Security...

This preview shows document pages 1 - 9. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online