Public Key Superstructure It’s PKI Jim, but not as we know it! 7 th Annual “IDtrust” Symposium 5 March 2008, Gaithersburg MD, USA Stephen Wilson Lockstep Consulting Pty Ltd
About Lockstep • Consultants specialised in PKI, smartcards & privacy • Developing novel deidentification and online safety solutions
About Lockstep • Asia PKI Forum • Gatekeeper Policy Committee • Aust. Law Reform Commission
Historical PKI experience
The passport metaphor • Non-descript applications – impossible for CAs to manage risk • Stranger-to-stranger e-business – “It’s good to trust but it’s better not to” • Novel TTP business models – Imposed incredible CPSs upon users • Notion of a single identity – “Interoperability” = cross certification
“Cross-certification and policy mapping has been a rat hole that has sucked up vast amounts of energy better spent elsewhere” Anonymous, Feb 2008
PKI thickets 1999 RSA Conference “Fading PKI Market” June 2003 Identrus Verisign IPO 1999 2002 2005 2008
PKI in practice • Works best in closed communities – Automates transactions in context – This is a Good Thing • Embedded keys & certificates • Fits with identity plurality
PK Superstructure
CA as Security Printer Achieve Listings Department Announcements OCR Stock Exchange Listed Company Officer Listing Listing Rules Rules Distribute bar code labels Announcement Fax Affix bar code
CA as Security Printer CA Distribute certificates, keys Listed Company Listing Listing Rules Rules Listings Department Announcements Message App Stock Exchange Announcement Message App Digitally sign
Security printer implications • Decouples registration from production • Manages risks associated with registration & production separately • • No contract between Subscriber & CA No exposure of CPS to Subscriber Easier to novate CA service providers Accreditation not affected by new Policies
Transaction Context Health Org CA Subject: - - Ext: Lic No. xyz Issuer: Health Org Policy OID: - - - Subject: - - Validity: - - Issuer: Root CA Policy OID: - - - Public Key: - - - User Certificate Health Organisation CA Certificate Signed: Health Root CA Patient name - Med - - Dose - - Repeats - - - Credentials Signed: Health Org CA e-Prescription Signed: Dr Lic. xyz “Relationship Certificates”
“Relationship Certificates” • Form of “Authorization PKI” • Kill the holy cow of authentication being primary over authorization • Preserves X. 509 formats, software • Not SPKI: no ‘primary’ ID certificate • Not Attribute Certs: we can sign with cert
Lockstep anonymous e-voting Certificate CA Serial No. Poll Key ign Candidate S Dig Candidate Certificate Serial No. Poll Key Install anon. certificate Generate key pair Roll Register smartcard Identify voter Enrol to vote Candidate 2 Candidate 1 Candidate 2 Candidate Smartcard distribution process A. Background Candidate n Sig Dig Candidate 1 B. Register C. Vote Signed ballot
Lockstep clinical study privacy (1) Distribute investigator packs Logistics Certificate Server Randomisation Collection Certificate (2) Enrol patient into study Patient ID Study ID Key ign Dig S (3) Load pt smartcard with Stepwise anonymous ID Study sponsor
Lockstep clinical study privacy Certificate (4) Patient presents for follow-up (6) De-identified secure follow up data, “sealed” with Stepwise ID Patient ID Study ID Key Logistics Certificate Server Randomisation Collection (5) Investigations as per protocol Study sponsor Tests
Discussion See also www. lockstep. com. au/technologies swilson@lockstep. com. au
Скачать презентацию Public Key Superstructure It s PKI Jim but not
1f5e0684f697adc76393eaa58d06417b.ppt