SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user...
-
Upload
angelina-pruitt -
Category
Documents
-
view
218 -
download
0
Transcript of SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user...
![Page 1: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/1.jpg)
SSL Trust Pitfalls
Prof. Ravi Sandhu
![Page 2: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/2.jpg)
2© Ravi Sandhu 2002
THE CERTIFICATE TRIANGLE
user
attribute public-key
X.509identity
certificate
X.509attribute
certificate
SPKIcertificate
![Page 3: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/3.jpg)
3© Ravi Sandhu 2002
SERVER-SIDE SSL (OR 1-WAY) HANDSHAKE WITH RSA
Client Server ClientHello --------> ServerHello Certificate <-------- ServerHelloDone ClientKeyExchange [ChangeCipherSpec] Finished --------> [ChangeCipherSpec] <-------- Finished Application Data <-------> Application Data
RecordProtocol
HandshakeProtocol
![Page 4: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/4.jpg)
4© Ravi Sandhu 2002
CLIENT-SIDE SSL (OR 2-WAY) HANDSHAKE WITH RSA
Client Server ClientHello --------> ServerHello Certificate CertificateRequest <-------- ServerHelloDone Certificate ClientKeyExchange CertificateVerify [ChangeCipherSpec] Finished --------> [ChangeCipherSpec] <-------- Finished Application Data <-------> Application Data
RecordProtocol
HandshakeProtocol
![Page 5: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/5.jpg)
5© Ravi Sandhu 2002
SINGLE ROOT CA MODEL
RootCA
a b c d e f g h i j k l m n o p
RootCAUser
![Page 6: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/6.jpg)
6© Ravi Sandhu 2002
SINGLE ROOT CAMULTIPLE RA’s MODEL
RootCA
a b c d e f g h i j k l m n o p
RootCA
User RA
User RA
User RA
![Page 7: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/7.jpg)
7© Ravi Sandhu 2002
MULTIPLE ROOT CA’s MODEL
RootCA
a b c d e f g h i j k l m n o p
RootCAUser
RootCA
RootCA
RootCAUser
RootCAUser
![Page 8: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/8.jpg)
8© Ravi Sandhu 2002
ROOT CA PLUS INTERMEDIATE CA’s MODEL
Z
X
Q
A
Y
R S T
C E G I K M O
a b c d e f g h i j k l m n o p
![Page 9: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/9.jpg)
9© Ravi Sandhu 2002
SECURE ELECTRONIC TRANSACTIONS (SET) CA HIERARCHY
Root
Brand BrandBrand
Geo-Political
Bank Acquirer
Customer Merchant
![Page 10: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/10.jpg)
10© Ravi Sandhu 2002
MULTIPLE ROOT CA’s PLUS INTERMEDIATE CA’s MODEL
X
Q
A
R
S T
C E G I K M O
a b c d e f g h i j k l m n o p
![Page 11: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/11.jpg)
11© Ravi Sandhu 2002
MULTIPLE ROOT CA’s PLUS INTERMEDIATE CA’s MODEL
X
Q
A
R
S T
C E G I K M O
a b c d e f g h i j k l m n o p
![Page 12: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/12.jpg)
12© Ravi Sandhu 2002
MULTIPLE ROOT CA’s PLUS INTERMEDIATE CA’s MODEL
X
Q
A
R
S T
C E G I K M O
a b c d e f g h i j k l m n o p
![Page 13: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/13.jpg)
13© Ravi Sandhu 2002
MULTIPLE ROOT CA’s PLUS INTERMEDIATE CA’s MODEL
Essentially the model on the web today
Deployed in server-side SSL mode Client-side SSL mode yet to happen
![Page 14: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/14.jpg)
14© Ravi Sandhu 2002
SERVER-SIDE SSL (OR 1-WAY) HANDSHAKE WITH RSA
Client Server ClientHello --------> ServerHello Certificate <-------- ServerHelloDone ClientKeyExchange [ChangeCipherSpec] Finished --------> [ChangeCipherSpec] <-------- Finished Application Data <-------> Application Data
RecordProtocol
HandshakeProtocol
![Page 15: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/15.jpg)
15© Ravi Sandhu 2002
SERVER-SIDE MASQUARADING
BobWeb browser
www.host.comWeb serverServer-side SSL
UltratrustSecurityServices
www.host.com
![Page 16: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/16.jpg)
16© Ravi Sandhu 2002
SERVER-SIDE MASQUARADING
BobWeb browser
www.host.comWeb server
Server-side SSL UltratrustSecurityServices
www.host.comMallory’sWeb server
BIMMCorporation
www.host.com
Server-side SSL
![Page 17: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/17.jpg)
17© Ravi Sandhu 2002
SERVER-SIDE MASQUARADING
BobWeb browser
www.host.comWeb server
Server-side SSL UltratrustSecurityServices
www.host.comMallory’sWeb server
Server-side SSL
BIMMCorporation
UltratrustSecurityServices
www.host.com
![Page 18: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/18.jpg)
18© Ravi Sandhu 2002
CLIENT-SIDE SSL (OR 2-WAY) HANDSHAKE WITH RSA
Client Server ClientHello --------> ServerHello Certificate CertificateRequest <-------- ServerHelloDone Certificate ClientKeyExchange CertificateVerify [ChangeCipherSpec] Finished --------> [ChangeCipherSpec] <-------- Finished Application Data <-------> Application Data
RecordProtocol
HandshakeProtocol
![Page 19: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/19.jpg)
19© Ravi Sandhu 2002
MAN IN THE MIDDLEMASQUARADING PREVENTED
BobWeb browser
www.host.comWeb server
Client-side SSL
UltratrustSecurityServices
www.host.com
Mallory’sWeb server
BIMMCorporation
Client-side SSL
UltratrustSecurityServices
www.host.com
Client Side SSLend-to-endUltratrust
SecurityServices
Bob
BIMMCorporation
UltratrustSecurityServices
Bob
![Page 20: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/20.jpg)
20© Ravi Sandhu 2002
ATTRIBUTE-BASED CLIENT SIDE MASQUARADING
Joe@anywhereWeb browser
BIMM.comWeb serverClient-side SSL
UltratrustSecurityServices
BIMM.com
UltratrustSecurityServices
Joe@anywhere
![Page 21: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/21.jpg)
21© Ravi Sandhu 2002
ATTRIBUTE-BASED CLIENT SIDE MASQUARADING
Alice@SRPCWeb browser
BIMM.comWeb serverClient-side SSL
UltratrustSecurityServices
BIMM.com
SRPC
Alice@SRPC
![Page 22: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/22.jpg)
22© Ravi Sandhu 2002
ATTRIBUTE-BASED CLIENT SIDE MASQUARADING
Bob@PPCWeb browser
BIMM.comWeb serverClient-side SSL
UltratrustSecurityServices
BIMM.com
PPC
Bob@PPC
![Page 23: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/23.jpg)
23© Ravi Sandhu 2002
ATTRIBUTE-BASED CLIENT SIDE MASQUARADING
Alice@SRPCWeb browser
BIMM.comWeb serverClient-side SSL
UltratrustSecurityServices
BIMM.com
SRPC
PPC
Bob@PPC
![Page 24: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/24.jpg)
24© Ravi Sandhu 2002
PKI AND TRUST
Got to be very careful Not a game for amateurs Not many professionals as yet
![Page 25: SSL Trust Pitfalls Prof. Ravi Sandhu. 2 © Ravi Sandhu 2002 THE CERTIFICATE TRIANGLE user attributepublic-key X.509 identity certificate X.509 attribute.](https://reader036.fdocuments.us/reader036/viewer/2022062618/551463f1550346494e8b5a75/html5/thumbnails/25.jpg)
25© Ravi Sandhu 2002
REFERENCES
"An overview of PKI trust models" by Perlman, R. IEEE Network, Volume: 13 Issue: 6 , Nov.-Dec. 1999 Page(s): 38-43
"The problem with multiple roots in Web browsers-certificate masquerading" by Hayes, J.M. Proceedings Seventh IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, IEEE 1998. (WET ICE '98) 17-19 June 1998 Page(s): 306 -311.
"Restricting access with certificate attributes in multiple root environments - a recipe for certificate masquerading" by Hayes, J.M. Proc. 15th Annual Computer Security Applications Conference, IEEE, 2001, Page(s): 386-390.