Introduction to public key infrastructures:
Gespeichert in:
| Hauptverfasser: | , , |
|---|---|
| Format: | Buch |
| Sprache: | English |
| Veröffentlicht: |
Berlin [u.a.]
Springer
2013
|
| Schlagworte: | |
| Online-Zugang: | Inhaltstext Inhaltsverzeichnis |
| Beschreibung: | XV, 194 S. Ill., graph. Darst. |
| ISBN: | 9783642406560 9783662524503 |
Internformat
MARC
| LEADER | 00000nam a2200000 c 4500 | ||
|---|---|---|---|
| 001 | BV041250788 | ||
| 003 | DE-604 | ||
| 005 | 20180226 | ||
| 007 | t | ||
| 008 | 130902s2013 gw ad|| |||| 00||| eng d | ||
| 015 | |a 13,N33 |2 dnb | ||
| 016 | 7 | |a 1037895347 |2 DE-101 | |
| 020 | |a 9783642406560 |c hardcover |9 978-3-642-40656-0 | ||
| 020 | |a 9783662524503 |c softcover |9 978-3-662-52450-3 | ||
| 024 | 3 | |a 9783642406560 | |
| 028 | 5 | 2 | |a Best.-Nr.: 86264606 |
| 035 | |a (OCoLC)864523134 | ||
| 035 | |a (DE-599)DNB1037895347 | ||
| 040 | |a DE-604 |b ger |e rakddb | ||
| 041 | 0 | |a eng | |
| 044 | |a gw |c XA-DE-BE | ||
| 049 | |a DE-706 |a DE-11 |a DE-29T |a DE-83 |a DE-739 |a DE-1050 |a DE-861 | ||
| 082 | 0 | |a 004 | |
| 082 | 0 | |a 005.82 |2 22/ger | |
| 084 | |a ST 276 |0 (DE-625)143642: |2 rvk | ||
| 084 | |a ST 277 |0 (DE-625)143643: |2 rvk | ||
| 084 | |a 004 |2 sdnb | ||
| 100 | 1 | |a Buchmann, Johannes |d 1953- |e Verfasser |0 (DE-588)105019178 |4 aut | |
| 245 | 1 | 0 | |a Introduction to public key infrastructures |c Johannes A. Buchmann ; Evangelos Karatsiolis ; Alexander Wiesmaier |
| 264 | 1 | |a Berlin [u.a.] |b Springer |c 2013 | |
| 300 | |a XV, 194 S. |b Ill., graph. Darst. | ||
| 336 | |b txt |2 rdacontent | ||
| 337 | |b n |2 rdamedia | ||
| 338 | |b nc |2 rdacarrier | ||
| 650 | 0 | 7 | |a Public-Key-Infrastruktur |0 (DE-588)4671762-6 |2 gnd |9 rswk-swf |
| 650 | 0 | 7 | |a Zertifizierung |0 (DE-588)4310416-2 |2 gnd |9 rswk-swf |
| 689 | 0 | 0 | |a Public-Key-Infrastruktur |0 (DE-588)4671762-6 |D s |
| 689 | 0 | 1 | |a Zertifizierung |0 (DE-588)4310416-2 |D s |
| 689 | 0 | |5 DE-604 | |
| 700 | 1 | |a Karatsiolis, Evangelos |d 1977- |e Verfasser |0 (DE-588)13347853X |4 aut | |
| 700 | 1 | |a Wiesmaier, Alexander |e Verfasser |0 (DE-588)139771166 |4 aut | |
| 776 | 0 | 8 | |i Erscheint auch als |n Online-Ausgabe |z 978-3-642-40657-7 |
| 856 | 4 | 2 | |m X:MVB |q text/html |u http://deposit.dnb.de/cgi-bin/dokserv?id=4396594&prov=M&dok_var=1&dok_ext=htm |3 Inhaltstext |
| 856 | 4 | 2 | |m DNB Datenaustausch |q application/pdf |u http://bvbr.bib-bvb.de:8991/F?func=service&doc_library=BVB01&local_base=BVB01&doc_number=026224832&sequence=000001&line_number=0001&func_code=DB_RECORDS&service_type=MEDIA |3 Inhaltsverzeichnis |
| 943 | 1 | |a oai:aleph.bib-bvb.de:BVB01-026224832 | |
Datensatz im Suchindex
| _version_ | 1806325725317300224 |
|---|---|
| adam_text |
CONTENTS
1 THE PURPOSE OF PKI 1
1.1 THE INTERNET 1
1.2 SECURITY GOALS 2
1.2.1 CONFIDENTIALITY 2
1.2.2 INTEGRITY 3
1.2.3 ENTITY AUTHENTICATION 3
1.2.4 DATA AUTHENTICITY 4
1.2.5 NON-REPUDIATION 5
1.2.6 OTHER SECURITY GOALS T. 5
1.3 CRYPTOGRAPHY 5
1.3.1 SECRET KEY ENCRYPTION 5
1.3.2 PUBLIC KEY ENCRYPTION 7
1.3.3 THE RSA PUBLIC KEY CRYPTOSYSTEM 8
1.3.4 OTHER PUBLIC KEY CRYPTOSYSTEMS 9
1.3.5 HYBRID ENCRYPTION 10
1.3.6 CRYPTOGRAPHIC HASH FUNCTIONS AND MESSAGE
AUTHENTICATION CODES 11
1.3.7 DIGITAL SIGNATURES 12
1.3.8 THE RSA SIGNATURE SCHEME 13
1.3.9 OTHER DIGITAL SIGNATURE SCHEMES 14
1.4 WHY PUBLIC KEY INFRASTRUCTURE? 15
1.5 IDENTITY-BASED PUBLIC KEY CRYPTOGRAPHY 16
1.6 OBJECT IDENTIFIERS 17
1.7 EXERCISES 17
REFERENCES 18
2 CERTIFICATES 21
2.1 THE CONCEPT OF A CERTIFICATE 21
2.2 X.509 CERTIFICATES 22
2.2.1 STRUCTURE 22
2.2.2 TBSCERTIFICATE 24
VII
HTTP://D-NB.INFO/1037895347
VIII CONTENTS
2.2.3 SIGNATUREALGORITHM 27
2.2.4 SIGNATURE VALUE 27
2.3 X.509 CERTIFICATE EXTENSIONS 27
2.4 ATTRIBUTE CERTIFICATES 31
2.5 CV CERTIFICATES 31
2.6 PGP CERTIFICATES 33
2.7 OTHER CERTIFICATES 33
2.7.1 WAP CERTIFICATES 34
2.7.2 SPKI CERTIFICATES 34
2.7.3 TRACEABLE ANONYMOUS CERTIFICATE 35
2.8 EXERCISES 35
REFERENCES 37
3 TRUST MODELS 39
3.1 DIRECT TRUST 39
3.2 WEB OF TRUST 42
3.2.1 KEY RING 44
3.2.2 TRUST SIGNATURES 47
3.2.3 PROBABILISTIC TRUST MODEL FOR GNUPG 48
3.3 HIERARCHICAL TRUST 48
3.3.1 BASIC CONSTRAINTS 50
3.4 COMBINING TRUST HIERARCHIES 51
3.4.1 TRUSTED LISTS 52
3.4.2 COMMON ROOT 53
3.4.3 CROSS-CERTIFICATION 56
3.4.4 BRIDGE 56
3.5 EXERCISES 58
REFERENCES 60
4 PRIVATE KEYS 61
4.1 PRIVATE KEY LIFE CYCLE 61
4.2 PERSONAL SECURITY ENVIRONMENTS 62
4.3 SOFTWARE PSES 63
4.3.1 PKCS#12 63
4.3.2 PKCS#8 64
4.3.3 JAVA KEYSTORE 65
4.3.4 APPLICATION-SPECIFIC FORMATS 65
4.4 HARDWARE PSES 68
4.4.1 SMART CARDS 68
4.4.2 SMART CARD READERS 69
4.4.3 SMART CARD COMMUNICATION INTERFACES 70
4.4.4 HARDWARE SECURITY MODULE 72
4.5 EXERCISES 73
REFERENCES 73
CONTENTS
5
REVOCATION 75
5.1 REQUIREMENTS 75
5.2 CERTIFICATE REVOCATION LISTS 76
5.2.1 BASIC FIELDS 76
5.2.2 CRL EXTENSIONS 79
5.2.3 ISSUING TIME OF A CRL 81
5.2.4 DELTA CRLS 82
5.2.5 AUTHORITY REVOCATION LIST 83
5.2.6 INDIRECT CRLS 83
5.3 CERTIFICATE EXTENSIONS RELATED TO REVOCATION 83
5.3.1 CRL DISTRIBUTION POINTS 83
5.4 OCSP 84
5.4.1 FUNCTIONALITY 84
5.4.2 EXTENSIONS 86
5.4.3 LIGHTWEIGHT OCSP 89
5.4.4 DESIGN OF AN OCSP SERVER 89
5.5 OTHER REVOCATION MECHANISMS 89
5.5.1 NOVOMODO 89
5.5.2 SHORT-LIVED CERTIFICATES 90
5.6 REVOCATION IN PGP 90
5.7 EXERCISES 91
REFERENCES 94
6 VALIDITY MODELS 95
6.1 THE SHELL MODEL 95
6.2 THE CHAIN MODEL 97
6.3 THE MODIFIED SHELL MODEL 98
6.4 EXERCISES 100
REFERENCES 101
7 CERTIFICATION SERVICE PROVIDER 103
7.1 CERTIFICATE LIFE CYCLE 103
7.1.1 CERTIFICATE GENERATION PHASE 103
7.1.2 CERTIFICATE VALIDITY PHASE 104
7.1.3 CERTIFICATE INVALIDITY PHASE 104
7.2 REGISTRATION AUTHORITY 105
7.3 CERTIFICATION AUTHORITY 107
7.4 OTHER COMPONENTS 108
7.5 COMMUNICATION WITHIN CSPS 108
7.5.1 CRYPTOGRAPHIC PROTECTION OF MESSAGES 108
7.5.2 CERTIFICATE REQUESTS 109
7.5.3 COMPLEX MESSAGE FORMATS AND PROTOCOLS 112
7.6 EXERCISES 115
REFERENCES 115
X
CONTENTS
8 CERTIFICATE POLICIES 117
8.1 STRUCTURE OF CERTIFICATE POLICIES 117
8.1.1 CERTIFICATION PRACTICE STATEMENT !. 119
8.2 RELEVANT CERTIFICATE EXTENSIONS 119
8.2.1 CERTIFICATE POLICIES 119
8.2.2 POLICY MAPPINGS 119
8.2.3 POLICY CONSTRAINTS 121
8.2.4 INHIBIT ANYPOLICY 121
8.3 EXTENDED VALIDATION CERTIFICATES 122
8.4 EXERCISES 122
REFERENCES 123
9 CERTIFICATION PATHS: RETRIEVAL AND VALIDATION 125
9.1 LDAP 125
9.1.1 STORING CERTIFICATES 126
9.1.2 CERTIFICATE SEARCH 129
9.1.3 STORING CRLS 130
9.1.4 SECURITY 131
9.2 OTHER CERTIFICATE RETRIEVAL METHODS 131
9.2.1 DNS 131
9.2.2 HTTP 132
9.2.3 WEB SERVERS AND FTP SERVERS 132
9.2.4 WEBDAV 132
9.3 CERTIFICATION PATH BUILDING 132
9.4 CERTIFICATION PATH VALIDATION 134
9.4.1 VALIDATION ALGORITHM 135
9.5 SERVER-BASED CERTIFICATE VALIDATION PROTOCOL (SCVP) 137
9.6 RELEVANT CERTIFICATE EXTENSIONS 138
9.6.1 AUTHORITY INFORMATION ACCESS 138
9.6.2 SUBJECT INFORMATION ACCESS 139
9.7 EXERCISES 140
REFERENCES 141
10 PKI IN PRACTICE 143
10.1 INTERNET 143
10.2 EMAIL 144
10.2.1 S/MIME 145
10.2.2 PGP 147
10.3 CODE SIGNING 152
10.4 VPN 154
10.5 LEGALLY BINDING ELECTRONIC SIGNATURES 156
10.6 E-GOVERNMENT 159
10.7 EXERCISES 162
REFERENCES 163
CONTENTS X"
A BASIC PATH VALIDATION ALGORITHM 165
SOLUTIONS TO THE EXERCISES 173
INDEX * 87 |
| any_adam_object | 1 |
| author | Buchmann, Johannes 1953- Karatsiolis, Evangelos 1977- Wiesmaier, Alexander |
| author_GND | (DE-588)105019178 (DE-588)13347853X (DE-588)139771166 |
| author_facet | Buchmann, Johannes 1953- Karatsiolis, Evangelos 1977- Wiesmaier, Alexander |
| author_role | aut aut aut |
| author_sort | Buchmann, Johannes 1953- |
| author_variant | j b jb e k ek a w aw |
| building | Verbundindex |
| bvnumber | BV041250788 |
| classification_rvk | ST 276 ST 277 |
| ctrlnum | (OCoLC)864523134 (DE-599)DNB1037895347 |
| dewey-full | 004 005.82 |
| dewey-hundreds | 000 - Computer science, information, general works |
| dewey-ones | 004 - Computer science 005 - Computer programming, programs, data, security |
| dewey-raw | 004 005.82 |
| dewey-search | 004 005.82 |
| dewey-sort | 14 |
| dewey-tens | 000 - Computer science, information, general works |
| discipline | Informatik |
| format | Book |
| fullrecord | <?xml version="1.0" encoding="UTF-8"?><collection xmlns="http://www.loc.gov/MARC21/slim"><record><leader>00000nam a2200000 c 4500</leader><controlfield tag="001">BV041250788</controlfield><controlfield tag="003">DE-604</controlfield><controlfield tag="005">20180226</controlfield><controlfield tag="007">t</controlfield><controlfield tag="008">130902s2013 gw ad|| |||| 00||| eng d</controlfield><datafield tag="015" ind1=" " ind2=" "><subfield code="a">13,N33</subfield><subfield code="2">dnb</subfield></datafield><datafield tag="016" ind1="7" ind2=" "><subfield code="a">1037895347</subfield><subfield code="2">DE-101</subfield></datafield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">9783642406560</subfield><subfield code="c">hardcover</subfield><subfield code="9">978-3-642-40656-0</subfield></datafield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">9783662524503</subfield><subfield code="c">softcover</subfield><subfield code="9">978-3-662-52450-3</subfield></datafield><datafield tag="024" ind1="3" ind2=" "><subfield code="a">9783642406560</subfield></datafield><datafield tag="028" ind1="5" ind2="2"><subfield code="a">Best.-Nr.: 86264606</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(OCoLC)864523134</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(DE-599)DNB1037895347</subfield></datafield><datafield tag="040" ind1=" " ind2=" "><subfield code="a">DE-604</subfield><subfield code="b">ger</subfield><subfield code="e">rakddb</subfield></datafield><datafield tag="041" ind1="0" ind2=" "><subfield code="a">eng</subfield></datafield><datafield tag="044" ind1=" " ind2=" "><subfield code="a">gw</subfield><subfield code="c">XA-DE-BE</subfield></datafield><datafield tag="049" ind1=" " ind2=" "><subfield code="a">DE-706</subfield><subfield code="a">DE-11</subfield><subfield code="a">DE-29T</subfield><subfield code="a">DE-83</subfield><subfield code="a">DE-739</subfield><subfield code="a">DE-1050</subfield><subfield code="a">DE-861</subfield></datafield><datafield tag="082" ind1="0" ind2=" "><subfield code="a">004</subfield></datafield><datafield tag="082" ind1="0" ind2=" "><subfield code="a">005.82</subfield><subfield code="2">22/ger</subfield></datafield><datafield tag="084" ind1=" " ind2=" "><subfield code="a">ST 276</subfield><subfield code="0">(DE-625)143642:</subfield><subfield code="2">rvk</subfield></datafield><datafield tag="084" ind1=" " ind2=" "><subfield code="a">ST 277</subfield><subfield code="0">(DE-625)143643:</subfield><subfield code="2">rvk</subfield></datafield><datafield tag="084" ind1=" " ind2=" "><subfield code="a">004</subfield><subfield code="2">sdnb</subfield></datafield><datafield tag="100" ind1="1" ind2=" "><subfield code="a">Buchmann, Johannes</subfield><subfield code="d">1953-</subfield><subfield code="e">Verfasser</subfield><subfield code="0">(DE-588)105019178</subfield><subfield code="4">aut</subfield></datafield><datafield tag="245" ind1="1" ind2="0"><subfield code="a">Introduction to public key infrastructures</subfield><subfield code="c">Johannes A. Buchmann ; Evangelos Karatsiolis ; Alexander Wiesmaier</subfield></datafield><datafield tag="264" ind1=" " ind2="1"><subfield code="a">Berlin [u.a.]</subfield><subfield code="b">Springer</subfield><subfield code="c">2013</subfield></datafield><datafield tag="300" ind1=" " ind2=" "><subfield code="a">XV, 194 S.</subfield><subfield code="b">Ill., graph. Darst.</subfield></datafield><datafield tag="336" ind1=" " ind2=" "><subfield code="b">txt</subfield><subfield code="2">rdacontent</subfield></datafield><datafield tag="337" ind1=" " ind2=" "><subfield code="b">n</subfield><subfield code="2">rdamedia</subfield></datafield><datafield tag="338" ind1=" " ind2=" "><subfield code="b">nc</subfield><subfield code="2">rdacarrier</subfield></datafield><datafield tag="650" ind1="0" ind2="7"><subfield code="a">Public-Key-Infrastruktur</subfield><subfield code="0">(DE-588)4671762-6</subfield><subfield code="2">gnd</subfield><subfield code="9">rswk-swf</subfield></datafield><datafield tag="650" ind1="0" ind2="7"><subfield code="a">Zertifizierung</subfield><subfield code="0">(DE-588)4310416-2</subfield><subfield code="2">gnd</subfield><subfield code="9">rswk-swf</subfield></datafield><datafield tag="689" ind1="0" ind2="0"><subfield code="a">Public-Key-Infrastruktur</subfield><subfield code="0">(DE-588)4671762-6</subfield><subfield code="D">s</subfield></datafield><datafield tag="689" ind1="0" ind2="1"><subfield code="a">Zertifizierung</subfield><subfield code="0">(DE-588)4310416-2</subfield><subfield code="D">s</subfield></datafield><datafield tag="689" ind1="0" ind2=" "><subfield code="5">DE-604</subfield></datafield><datafield tag="700" ind1="1" ind2=" "><subfield code="a">Karatsiolis, Evangelos</subfield><subfield code="d">1977-</subfield><subfield code="e">Verfasser</subfield><subfield code="0">(DE-588)13347853X</subfield><subfield code="4">aut</subfield></datafield><datafield tag="700" ind1="1" ind2=" "><subfield code="a">Wiesmaier, Alexander</subfield><subfield code="e">Verfasser</subfield><subfield code="0">(DE-588)139771166</subfield><subfield code="4">aut</subfield></datafield><datafield tag="776" ind1="0" ind2="8"><subfield code="i">Erscheint auch als</subfield><subfield code="n">Online-Ausgabe</subfield><subfield code="z">978-3-642-40657-7</subfield></datafield><datafield tag="856" ind1="4" ind2="2"><subfield code="m">X:MVB</subfield><subfield code="q">text/html</subfield><subfield code="u">http://deposit.dnb.de/cgi-bin/dokserv?id=4396594&prov=M&dok_var=1&dok_ext=htm</subfield><subfield code="3">Inhaltstext</subfield></datafield><datafield tag="856" ind1="4" ind2="2"><subfield code="m">DNB Datenaustausch</subfield><subfield code="q">application/pdf</subfield><subfield code="u">http://bvbr.bib-bvb.de:8991/F?func=service&doc_library=BVB01&local_base=BVB01&doc_number=026224832&sequence=000001&line_number=0001&func_code=DB_RECORDS&service_type=MEDIA</subfield><subfield code="3">Inhaltsverzeichnis</subfield></datafield><datafield tag="943" ind1="1" ind2=" "><subfield code="a">oai:aleph.bib-bvb.de:BVB01-026224832</subfield></datafield></record></collection> |
| id | DE-604.BV041250788 |
| illustrated | Illustrated |
| indexdate | 2024-08-03T00:54:09Z |
| institution | BVB |
| isbn | 9783642406560 9783662524503 |
| language | English |
| oai_aleph_id | oai:aleph.bib-bvb.de:BVB01-026224832 |
| oclc_num | 864523134 |
| open_access_boolean | |
| owner | DE-706 DE-11 DE-29T DE-83 DE-739 DE-1050 DE-861 |
| owner_facet | DE-706 DE-11 DE-29T DE-83 DE-739 DE-1050 DE-861 |
| physical | XV, 194 S. Ill., graph. Darst. |
| publishDate | 2013 |
| publishDateSearch | 2013 |
| publishDateSort | 2013 |
| publisher | Springer |
| record_format | marc |
| spelling | Buchmann, Johannes 1953- Verfasser (DE-588)105019178 aut Introduction to public key infrastructures Johannes A. Buchmann ; Evangelos Karatsiolis ; Alexander Wiesmaier Berlin [u.a.] Springer 2013 XV, 194 S. Ill., graph. Darst. txt rdacontent n rdamedia nc rdacarrier Public-Key-Infrastruktur (DE-588)4671762-6 gnd rswk-swf Zertifizierung (DE-588)4310416-2 gnd rswk-swf Public-Key-Infrastruktur (DE-588)4671762-6 s Zertifizierung (DE-588)4310416-2 s DE-604 Karatsiolis, Evangelos 1977- Verfasser (DE-588)13347853X aut Wiesmaier, Alexander Verfasser (DE-588)139771166 aut Erscheint auch als Online-Ausgabe 978-3-642-40657-7 X:MVB text/html http://deposit.dnb.de/cgi-bin/dokserv?id=4396594&prov=M&dok_var=1&dok_ext=htm Inhaltstext DNB Datenaustausch application/pdf http://bvbr.bib-bvb.de:8991/F?func=service&doc_library=BVB01&local_base=BVB01&doc_number=026224832&sequence=000001&line_number=0001&func_code=DB_RECORDS&service_type=MEDIA Inhaltsverzeichnis |
| spellingShingle | Buchmann, Johannes 1953- Karatsiolis, Evangelos 1977- Wiesmaier, Alexander Introduction to public key infrastructures Public-Key-Infrastruktur (DE-588)4671762-6 gnd Zertifizierung (DE-588)4310416-2 gnd |
| subject_GND | (DE-588)4671762-6 (DE-588)4310416-2 |
| title | Introduction to public key infrastructures |
| title_auth | Introduction to public key infrastructures |
| title_exact_search | Introduction to public key infrastructures |
| title_full | Introduction to public key infrastructures Johannes A. Buchmann ; Evangelos Karatsiolis ; Alexander Wiesmaier |
| title_fullStr | Introduction to public key infrastructures Johannes A. Buchmann ; Evangelos Karatsiolis ; Alexander Wiesmaier |
| title_full_unstemmed | Introduction to public key infrastructures Johannes A. Buchmann ; Evangelos Karatsiolis ; Alexander Wiesmaier |
| title_short | Introduction to public key infrastructures |
| title_sort | introduction to public key infrastructures |
| topic | Public-Key-Infrastruktur (DE-588)4671762-6 gnd Zertifizierung (DE-588)4310416-2 gnd |
| topic_facet | Public-Key-Infrastruktur Zertifizierung |
| url | http://deposit.dnb.de/cgi-bin/dokserv?id=4396594&prov=M&dok_var=1&dok_ext=htm http://bvbr.bib-bvb.de:8991/F?func=service&doc_library=BVB01&local_base=BVB01&doc_number=026224832&sequence=000001&line_number=0001&func_code=DB_RECORDS&service_type=MEDIA |
| work_keys_str_mv | AT buchmannjohannes introductiontopublickeyinfrastructures AT karatsiolisevangelos introductiontopublickeyinfrastructures AT wiesmaieralexander introductiontopublickeyinfrastructures |