SSLSockets - CS 580 Client-Server Programming Spring...

Info iconThis preview shows pages 1–9. Sign up to view the full content.

View Full Document Right Arrow Icon
CS 580 Client-Server Programming Spring Semester, 2010 April 19, 2009 Copyright ©, All rights reserved. 2010 SDSU & Roger Whitney, 5500 Campanile Drive, San Diego, CA 92182-7700 USA. OpenContent ( http:// www.opencontent.org/opl.shtml ) license defines the copyright on this document.
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
References 2 Transport Layer Security. (2010, April 18). In Wikipedia, The Free Encyclopedia. Retrieved 04:46, April 20, 2010, from http://en.wikipedia.org/w/index.php? Java Networking Programming, 3rd Ed., Harold, O'Reilly, 2005, Chaters 11, 19
Background image of page 2
3 Secure Socket Layer (SSL) SSL1 never release (Netscape) SSL2 (1995) SSL3 (1996) Transport Layer Security (TLS) TLS1 (1999) TLS1.1 (2006) TLS1.2 (2008) Use Public Key encryption To pass private key Client checks server certificate TLS allows server to check client certificate
Background image of page 3

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
X.509 Certificates 4 Pairs public key to a Name Version Serial Number Algorithm ID Issuer Validity Not Before Not After Subject Subject Public Key Info Public Key Algorithm Subject Public Key Issuer Unique Identifier (Optional) Subject Unique Identifier (Optional) Extensions (Optional) Certificate Signature Algorithm Certificate Signature Certificate contents
Background image of page 4
Certificate Authority (CA) 5 Trusted companies/agencies that issue certificates VeriSign (57% of market) Microsoft Corporation Incident 2001 VeriSign issued certificate named "Microsoft Corporation" to person
Background image of page 5

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
6 Web browsers have a list of trusted CAs User gets warning if site uses certificate browser can't validate
Background image of page 6
Root Certificates 7 Certificates are signed using private key of issuer Use public key to validate signature Web browsers contain certificates of CAs (issuers)
Background image of page 7

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Generating a Certificate using Java 8 Al pro 13->keytool -genkey -alias whitney -keystore exampleKeystore Enter keystore password: Keystore password is too short - must be at least 6 characters Enter keystore password: Re-enter new password: What is your first and last name? [Unknown]: Roger Whitney What is the name of your organizational unit? [Unknown]: Computer Science What is the name of your organization? [Unknown]: SDSU What is the name of your City or Locality? [Unknown]:
Background image of page 8
Image of page 9
This is the end of the preview. Sign up to access the rest of the document.

Page1 / 26

SSLSockets - CS 580 Client-Server Programming Spring...

This preview shows document pages 1 - 9. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online