Network Security Consulting Agency Since 1989 - Specialized in Unix, Windows, TCP/IP and Internet
Text mode: access to the page content
Hervé Schauer Consultants
You are here: Home > Resources > Lectures > PKIs and certificates - Theory, standards, and example of an installation for a web server with secure access
Go to: HSC Trainings
Version française
o Skills & Expertise
o Consulting
o ISO 27001 services
o Vulnerabilities monitoring
o Audit & Assessment
o Penetration tests
o Vunerability assessment (TSAR)
o Forensics
o Training courses
o E-learning
o Agenda
o Past events
o Tutorials
o Thematic index
o Tips
o Lectures
o Courses
o Articles
o Tools (download)
o Vulnerability watch
o Hervé Schauer
o Team
o Job opportunities
o Credentials
o History
o Partnerships
o Associations
   Press and
o HSC Newsletter
o Press review
o Press releases
o Publications
o How to reach us
o Specific inquiries
o Directions to our office
o Hotels near our office
|>|PKIs and certificates
Theory, standards, and example of an installation for a web server with secure access  
> Access to the content HTML Beginning of the presentation  
> Description
  • Introduction to the basics about public key infrastructures and certificates;
  • Presentation of the main current standards (X.509, PKIX, SPKI, DNSSEC, PKCS);
  • Example of a simple installation for controling access to a web server by means of certificates (apache + mod_ssl + OpenSSL).  
  • > Context & Dates Talk made before the SUR group from the OSSIR , on 7 September 1999.
    > Author Ghislaine Labouret  
    > Type 34 slides [ French - HTML ]  
    > Abstract &
    Table of content

    1. Théorie
        PKI (Public Key Infrastructure)
        Principaux acteurs

    2. Normes
        X.509 - Présentation
        X.509 - Format des certificats
        X.509 - Exemple de certificat (1/2)
        X.509 - Exemple de certificat (2/2)
        X.509 - Format des listes de révocation
        X.509 - Exemple de liste de révocation
        PKIX (Public Key Infrastructure X.509)
        SPKI (Simple Public Key Infrastructure)
        SPKI (Simple Public Key Infrastructure)
        DNSSEC (Domain Name System Security)
        DNSSEC (Domain Name System Security)
        PKCS (Public Key Cryptography Standards)

    3. Exemple de mise en œuvre
        La solution et ses composants
        Clefs nécessaires et hiérarchie de certification choisie
        Serveur web - Préalables et compilation
        Serveur web - Certificat serveur, installation et configuration
        Certificat client - Création de la CA
        Certificat client - Configuration d'Apache
        Emission d'un certificat client - Étapes
        Emission d'un certificat client 1 - Client
        Emission d'un certificat client 2 - Autorité d'enregistrement
        Emission d'un certificat client 3 - Autorité de certification
        Emission d'un certificat client 4 - Client
        Révocation d'un certificat client


    > Related documents
    themePKI (Public Key Infrastructure)
    [Course]  Understanding PKI
    [Presentation]  Computer security and legal security [3 July 2007 - French]
    [Presentation]  Identity Management [17 December 2004 - French]
    [Presentation]  Time-stamping - Implementation of the proof of date [31 March 2004 - French]
    [Tip]  PFS property in key interchange protocoles [17 October 2003 - ]
    [Course]  Understanding PKI [4 April 2003 - French]
    [Presentation]  OpenSSL and applications of OpenSSL [6 November 2002 - French]
    [Tip]  X509 certificats revocation [14 June 2002 - French]
    [Techno-watch]  Semaine Européenne des Technologies de l'Information (SETI 2002) [4 April 2002 - French]
    [Presentation]  PKI open-source software [28 March 2002 - French]
    [Presentation]  Certificates management with open source software [1 February 2002 - French]
    [Techno-watch]  Clusif PKI conference [23 December 2001 - French]
    [Presentation]  Introduction to Public Key Infrastructures [22 January 2001 - French]
    [Presentation]  Introduction to PKI [12 May 2000 - English]
    [Presentation]  Directories, PKIs, IPsec VPNs and certificates: global security at last? [13 March 2000 - French]
    > Copyright © 1999, Hervé Schauer Consultants, all rights reserved.


    Last modified on 17 October 2002 at 16:04:05 CET - webmaster@hsc.fr
    Information on this server - © 1989-2010 Hervé Schauer Consultants