Lecture 15: PKI and Certificates

Question 1

What do public key infrastructures imply?

Answer 1

The use of public digital certificates

Digital signatures provide these certificates

Question 2

What types of certificates are standardised and used in most network security applications

Answer 2

X.509 certificates

Question 3

Give NIST’s definition of a public key infrastructrue

Answer 3

the key management environment for public key information of a public key cryptographic system

Question 4

What is key management concerned with?

Answer 4

The lifecycle of cryptographic keys –> generation, distribution, storage and destruction of keys

Question 5

What legal or business (trusted) entities may be involved in PKI?

Answer 5

1) registration authorities (RAs)
2) validation authorities (VAs)
3) certification authorities (CAs)

Question 6

What do registration authorities do i.t.o PKIs?

Answer 6

vouching for the identity of a user

Question 7

What does PKI stand for?

Answer 7

public key infrastructure

Question 8

What do validation authorities do i.t.o PKIs?

Answer 8

verify that identity

Question 9

What do certification authorities do i.t.o PKIs?

Answer 9

issuing digital certificates (certifying the public key of the user)

Question 10

How can we be confident of the correct binding between a public key and its owner?

–> e.g. when using a public key to encrypt a message or to verify a digital signature

Answer 10

achieved through using digital certificates

Question 11

What do digital certificates contain?

Answer 11

1) public key
2) owner identity
3) signature alg
4) validity period
….

Question 12

Who signs digital certificates?

Answer 12

certification authority (CA)

–> CA should be trusted by the certificate verifier

Question 13

What does a CA do?

Answer 13

creates, issues and revokes certificates for subscribers and other CAs

Question 14

What does CA stand for?

Answer 14

certification authority

Question 15

What must a CA have?

Answer 15

a certification practice statement (CPS)

Question 16

What does CPS stand for?

Answer 16

certification practice statement

Question 17

What issues does a CPS cover?

Answer 17

<strong>1)</strong> checks performance before certificate issue
<strong>2)</strong> physical, personnel and procedural security controls for the CA
<strong>3)</strong> technical and key pair protection and management controls
<strong>4)</strong> certificate revocation management procedures
<strong>5)</strong> accreditation info
<strong>6)</strong> legal and privacy issues and liability limitations

Question 18

Outline the X.509 standard

Answer 18

Most widely used certificate standard

Originally ITU standard
Now RFC 5280

Current version (3) allows flexible extensions

Question 19

What are the important fields in X.509 certificates? (8)

Answer 19

1) version number
2) serial number (set by CA)
3) signature algorithm identifier (alg used to digitally sign)
4) issue name (of the CA)
5) subject name (of the user to which the certificates is issued
6) public key info
7) validity period
8) digital signature (of the certificate, generated by CA)

Question 20

Explain the digital certificate example on slide 10 in set 15

Answer 20

See slide 10 in set 15

Question 21

Explain the digital certificate example on slide 11 in set 15

Answer 21

See slide 11 in set 15

Question 22

How do you verify a certificate?

Answer 22

1) by checking that the CA’s signature is valid

2) by checking that any conditions set in the certificate are correct

Question 23

What must be done in order to verify a certificate?

Answer 23

The user of the certificate must have the correct public key of the CA

Question 24

Does it matter how the user obtains the certifcate?

Answer 24

no

Question 25

Can public directories store certificates?

Answer 25

Yes

Often, the owner of the public key sends the certificate to the user

Question 26

How is a certification path set up?

Answer 26

Suppose that the public key of the CA ca0 is not already known and trusted

Then, ca0’s public key can be certified by another Ca ca1

In turn, ca1’s public key can be certified by another CA ca2

Thus, a chain of trust is set up, known as certification path

can –> … –> ca2 –> ca1 –> ca0

Question 27

Given that an entity has a copy of can’s public key and a chain of trust exists between can and ca0, how does obtain a trusted copy of ca0’s public key?

Answer 27

The chain of trust is used with certificates for all intermediate CAs to obtain a trusted copy of ca0’s public key

Question 28

Explain the process of a phishing attack

Answer 28

See slide 14 in set 15

Question 29

What is an extended validation certificate?

Answer 29

Signed by specific intermediate CA

Question 30

What is the browser indication of an extended validation certificate?

Answer 30

A colour in the address bar to indicate that the certificate has been issued at a specified level

No technical difference between the certificate

Question 31

What is revocation of a digital certificate?

Answer 31

Declaring a certificate invalid even though its validity period is current

Question 32

Who has to check which certificates have been revoked?

Answer 32

the user

Question 33

What is the CRL?

Answer 33

each CA periodically issues a list of revoked certificates which can be downloaded and then checked by clients before using a certificate

Question 34

What does CRL stand for?

Answer 34

certification revocation list

Question 35

What is the OCSP?

Answer 35

a server maintains a current list of revoked certificates and responds to request about specific certificates

Question 36

What does OCSP stand for?

Answer 36

online certificate status protocol

Question 37

What does public key pinning allow browsers to do?

Answer 37

fix a certain time the public key used to verify certificates for certain sites

Question 38

What does public key pinning prevent?

Answer 38

attacks due to compromised CAs

Question 39

What browsers support public key pinning?

Answer 39

Firefox and others

Previously supported by Chrome, but Google announced to remove it in 2017

Question 40

Explain hierarchical PKI

Answer 40

Top to bottom:

Root CA
Intermediate CAs
Users

A CA certifies the public key of the entity below

See the tree diagram on slide 19 in set 15

Question 41

In a non-hierarchical PKI, how is certification done?

Answer 41

certification done between any CAs

–> X can certify Y’s public key, or Z can certify Y’s public key –> like path example

Question 42

Explain the browser PKI

Answer 42

Multiple hierarchies with preloaded public keys as root CAs

Intermediate CAs can be added

Users can also add their own certificates

Most servers send their public key and certificates to the browser at the start of a secure communication using TLS protocol

Question 43

Where is OpenPGP PKI used?

Answer 43

Used in email security e.g. P2P NW

Question 44

What does the certificate in OpenPGP PKI include?

Answer 44

ID, public key, validity period, self-signature

Question 45

Does OpenPGP PKI have certification authorities?

Answer 45

NO
Keys signed by anyone

certified by as many pairs as possible

Question 46

Where are the keys stored in OpenPGP PKI?

Answer 46

various key servers

Question 47

What is OpenPGP PKI often known as?

Answer 47

web of trust