LEFIS PKILEFIS General Assemble @ Beja, Portugal

19-21 October 2006Leo Catalinas <lcg@unizar.es>

Abstract

Achieved/Pending Aims- Stable PKI- MoodlePKI

Next Steps- IRIS-PKI- Spanish DNI-e- @firma MAP

Lefis-PKI

Lefis-PKI

Achieved Aims

Stable PKI GNU/Linux IETF ITU-T X.509 Standard Hierarchical, 2 CAs OpenCA PKI Doc User support (en/es)

MoodlePKI Secure communications User Auth with Certs Generic Java PKI Auth Service

Lefis-PKI

Pending Aims

PKI Digital signature in email Digital signature in documents Cryptographic devices

MoodlePKI Standardization of Moodle modifications (to moodle specs) Generic Java PKI Auth Service

Recognize external PKI certificates Revoked LEFIS and external Certificates (CRL) More verbosity in error handling

Web utility for Sign/Verify for material delivery/download

Lefis-PKI

Next Steps

IRIS-PKI What is RedIRIS ? And IRIS-PKI? PKI Hierarchy

Now: Aptice-CA New: IRIS-PCA

Advantages: Consolidated PKI Great support National field More recognition More guarantees Server Certificates Free

Lefis-PKI

Next Steps

Spanish DNI-e

issued by Spanish National Police Allows:

to identify to sign

Like the cryptographic cards we use Published Applications:

buy in Internet securely procedures with Administration secure online bank ...access to web applications like LEFIS with MoodlePKI

Lefis-PKI

Next Steps

@firma

Public Validation Infrastructure Ministry of Public Administration Services

Validation of Certificates high cost MultiCA: DNIe and others X.509: ldap, http, ftp, ocsp

Validation of Signatures Signature (web and client app) Encryption (client application) TimeStamping

Lefis-PKI

Enter The PKI:http://pki.lefis.org

Lefis-PKI

Thank you very much

http://pki.lefis.orgpki@lefis.org

Leonardo Catalinaslcg@unizar.es