HSC - Presentations - PKIs and certificates (Theory, standards, and example of an installation for a web server with secure access)

Network Security Consulting Agency Since 1989 - Specialized in Unix, Windows, TCP/IP and Internet

Hervé Schauer Consultants

You are here: Home > Resources > Lectures > PKIs and certificates - Theory, standards, and example of an installation for a web server with secure access

Go to: HSC Trainings

			Skills & Expertise
			Consulting
			ISO 27001 services
			Vulnerabilities monitoring
			Audit & Assessment
			Penetration tests
			Vunerability assessment (TSAR)
			Forensics
			ARJEL
			Training courses
			E-learning

			Agenda
			Past events
			Tutorials

			Thematic index
			Tips
			Lectures
			Courses
			Articles
			Tools (download)
			Vulnerability watch

			Hervé Schauer
			Team
			Job opportunities
			Credentials
			History
			Partnerships
			Associations

Press and
communication

			HSC Newsletter
			Press review
			Press releases
			Publications

			How to reach us
			Specific inquiries
			Directions to our office
			Hotels near our office


		PKIs and certificates Theory, standards, and example of an installation for a web server with secure access

Access to the content

Beginning of the presentation

Description

Introduction to the basics about public key infrastructures and certificates;

Presentation of the main current standards (X.509, PKIX, SPKI, DNSSEC, PKCS);

Example of a simple installation for controling access to a web server by means of certificates (apache + mod_ssl + OpenSSL).

Context & Dates

Talk made before the SUR group from the OSSIR , on 7 September 1999.

Author

Ghislaine Labouret

Type

34 slides [

-

]

Abstract &
Table of content

Flyleaf
Introduction

1. Théorie
    Historique
    PKI (Public Key Infrastructure)
    Certificat
    Principaux acteurs

2. Normes
    X.509 - Présentation
    X.509 - Format des certificats
    X.509 - Exemple de certificat (1/2)
    X.509 - Exemple de certificat (2/2)
    X.509 - Format des listes de révocation
    X.509 - Exemple de liste de révocation
    PKIX (Public Key Infrastructure X.509)
    SPKI (Simple Public Key Infrastructure)
    SPKI (Simple Public Key Infrastructure)
    DNSSEC (Domain Name System Security)
    DNSSEC (Domain Name System Security)
    PKCS (Public Key Cryptography Standards)

3. Exemple de mise en œuvre
    La solution et ses composants
    Clefs nécessaires et hiérarchie de certification choisie
    Serveur web - Préalables et compilation
    Serveur web - Certificat serveur, installation et configuration
    Certificat client - Création de la CA
    Certificat client - Configuration d'Apache
    Emission d'un certificat client - Étapes
    Emission d'un certificat client 1 - Client
    Emission d'un certificat client 2 - Autorité d'enregistrement
    Emission d'un certificat client 3 - Autorité de certification
    Emission d'un certificat client 4 - Client
    Révocation d'un certificat client

Related documents

PKI (Public Key Infrastructure)

Understanding PKI

Computer security and legal security [3 July 2007 -

]

Identity Management [17 December 2004 -

]

Time-stamping - Implementation of the proof of date [31 March 2004 -

]

PFS property in key interchange protocoles [17 October 2003 - ]

Understanding PKI [4 April 2003 -

]

OpenSSL and applications of OpenSSL [6 November 2002 -

]

X509 certificats revocation [14 June 2002 -

]

Semaine Européenne des Technologies de l'Information (SETI 2002) [4 April 2002 -

]

PKI open-source software [28 March 2002 -

]

Certificates management with open source software [1 February 2002 -

]

Clusif PKI conference [23 December 2001 -

]

Introduction to Public Key Infrastructures [22 January 2001 -

]

Introduction to PKI [12 May 2000 -

]

Directories, PKIs, IPsec VPNs and certificates: global security at last? [13 March 2000 -

]

Copyright

© 1999, Hervé Schauer Consultants, all rights reserved.

Last modified on 17 October 2002 at 16:04:05 CET - webmaster@hsc.fr
- © 1989-2010 Hervé Schauer Consultants