Professional Documents
Culture Documents
We cannot enter into alliance with neighbouring princes until we are acquainted with their designs. The Art of War, Sun Tzu War,
Authentication Applications
will consider authentication functions developed to support applicationapplicationlevel authentication & digital signatures will consider Kerberos a privateprivatekey authentication service then X.509 directory authentication service
Kerberos
trusted key server system from MIT provides centralised private-key privatethirdthird-party authentication in a distributed network
allows users access to services distributed through network without needing to trust all workstations rather all trust a central authentication server
Kerberos Requirements
implemented using a 3rd party authentication scheme using a protocol proposed by NeedhamNeedham-Schroeder (NEED78)
Kerberos 4 Overview
a basic third-party authentication scheme third uses DES buried in an elaborate protocol
Kerberos 4 Overview
Kerberos Realms
if have multiple realms, their Kerberos servers must share keys and trust
Kerberos Version 5
encryption algorithm, network protocol, byte order, ticket lifetime, authentication forwarding, inter-realm interauthentication double encryption, non-standard mode of use, nonsession keys, password attacks
also defines authentication protocols uses public-key crypto & digital signatures public algorithms not standardized, but RSA recommended
X.509 Certificates
X.509 Certificates
Obtaining a Certificate
any user with access to the public key of the CA can verify the user public key that was certified only the CA can modify a certificate without being detected cannot be forged, certificates can be placed in a public directory
CA Hierarchy
if both users share a common CA then they are assumed to know its public key otherwise CA's must form a hierarchy use certificates linking members of hierarchy to validate other CA's
each CA has certificates for clients (forward) and parent (backward)
each client trusts parents certificates enable verification of any certificate from one CA by users of all other CAs in hierarchy
CA Hierarchy Use
Certificate Revocation
certificates have a period of validity may need to revoke before expiration, eg:
1. user's private key is compromised 2. user is no longer certified by this CA 3. CA's certificate is compromised
CAs maintain list of revoked certificates the Certificate Revocation List (CRL) users should check certificates with CAs CRL
Authentication Procedures
Nonce
a nonce is a parameter that varies with time. A nonce can be a time stamp, a visit counter on a Web page, or a special marker intended to limit or prevent the unauthorized replay or reproduction of a file.
Nonce
OneOne-Way Authentication
TwoTwo-Way Authentication
reply includes original nonce from A, also timestamp and nonce from B
ThreeThree-Way Authentication
3 messages (A->B, B->A, A->B) which (ABAenables above authentication without synchronized clocks has reply from A back to B containing a signed copy of nonce from B means that timestamps need not be checked or relied upon
X.509 Version 3
rather than explicitly naming new fields a general extension method was defined extensions consist of:
extension identifier criticality indicator extension value
Certificate Extensions