SlideShare a Scribd company logo

Public key infrastructure

Download as PPTX, PDF
A
Aditya Nama

A public key infrastructure (PKI) allows for secure communication and data exchange over public networks through the use of public and private cryptographic key pairs provided by a certificate authority. A PKI uses asymmetric encryption where a public key is used to encrypt data and a private key is used to decrypt it. Digital certificates issued by a certificate authority are used to verify the identity of individuals by containing their public key and identification details signed by the certificate authority. This allows for trust in electronic transactions by ensuring people receive keys from the actual identity they claim to be rather than an impersonator.

Internet
Related topics:
Information Security
1 of 12
Downloaded 30 times
1
2
Most read
3
4
Most read
5
6
7
Most read
8
9
10
11
12
TOPIC- PUBLIC KEY INFRASTRUCTURE ADITYA NAMA
What is Public Key Infrastructure? A public key infrastructure (PKI) allows users of the Internet and other public networks to engage in secure communication, data exchange and money exchange. This is done through public and private cryptographic key pairs provided by a certificate authority. There are different types of systems in a PKI: • Private and Public Key Systems: Private systems are symmetric cryptography and a public systems are asymmetric cryptography. Currently, public key systems are the most common. • Symmetric Encryption Systems: The same key is used for both the processes of encryption and decryption. • Asymmetric Encryption Systems: A different key is used for each process. One key is the public key and the other key is the private key. If something is encrypted with the public key, then decryption can only be done with the private key. Alternatively, if something is encrypted with the private key, then decryption must be done only with the public key.
It is a Framework that allows different it systems to have: Throughout authentication with
JOHN SUZZANE Secure Message REQUEST SENDS HER KEY TO JOHN TO ENCRYPT THE MESSAGE Encrypted Message Can be distributed to anyone Uses to Decrypt the message and read it. Let’s take an example: -
How do we really know that John really got Suzzane Public key? Someone could have pretended to be Suzzane and send John her/his Public key. This is where Digital Certificates come in. SUZZANE
What is Digital Certificate? • They are the data packages that Identifies the entity. What is Digital Certificates? • The Digital Certificates itself is protected by asymmetric cryptography A trusted party known as Certificate Authority(CA) issues these Digital Certificates to the person once a certain confidence in the person's identity has been established by the CA.
PKI is also often backed up by legislation that is country specific. PKI Might be present in CA is both an organization as well as set of IT system that is: • Responsible for Issuing • Revoking • It is often a third party organization that is trusted by all parties participating in PKI. REGISTRATION AUTHORITY(RA): The Registration Authority (RA) is to evaluate the credentials and relevant evidence that a person requesting a certificate is as claimed, certify for that association of an electronic identification, public key and approves the request for issuance of a certificate by a CA.
Organizations can also have their In-house CA system. Secure matrix PKI in a BOX Appliance allows organizations to exactly do that with ease and at a lower cost. Now take that example again of John and Suzzane but this time with PKI:
JOHN SUZZANE Secure Message The Digital Certificate contains suzzane’s particulars, Public Key, the CAS particulars and cryptographic data all the information needed to identify the entity with a high level of confidence. The process will remain same but this time John make sure that the Public Key came from Suzzane by validating DC.
• It allows the choice of trust provider. • Users maintain their own certificates, and certificate authentication involves exchange of data between client and server only. This means that no third party authentication server needs to be online. There is thus no limit to the number of users who can be supported using PKI. • PKI allows delegated trust. That is, a user who has obtained a certificate from a recognized and trusted certificate authority can authenticate himself to a server the very first time he connects to that server, without having previously been registered with the system. Advantages of the PKI: Disadvantages of the PKI • Computer has to work very hard to both encrypt and decrypt data using the system. In applications where we need to work with large quantities of encrypted data on a regular basis, the computational overhead means that public key systems can be very slow.
• The certification authority may be get compromised, the criminal could issue false certificates and fool people into sending data to the wrong place. • However, once you receive that credit card data, if you leave a computer with access to your server out in the open, someone could sit down at the keyboard, download all of the securely transferred data and steal it. Public key encryption won't protect against that and, as such, it's only a part of an overall security system. END! SOURCE IS SECURED for links send me your Digital Certificate.
Public key infrastructure

More Related Content

PDF
Digital certificates & its importance
svm
 
PPTX
Introduction to Public Key Infrastructure
Theo Gravity
 
PPT
Digital certificates
Sheetal Verma
 
PPTX
public key infrastructure
vimal kumar
 
PPT
authentication.ppt
jayarao21
 
PPT
PUBLIC KEY ENCRYPTION
raf_slide
 
PPT
6. cryptography
7wounders
 
PPTX
Key management
Sujata Regoti
 
Digital certificates & its importance
svm
 
Introduction to Public Key Infrastructure
Theo Gravity
 
Digital certificates
Sheetal Verma
 
public key infrastructure
vimal kumar
 
authentication.ppt
jayarao21
 
PUBLIC KEY ENCRYPTION
raf_slide
 
6. cryptography
7wounders
 
Key management
Sujata Regoti
 

What's hot (20)

PPT
Keyloggers and Spywares
Ankit Mistry
 
PPTX
Network security (vulnerabilities, threats, and attacks)
Fabiha Shahzad
 
PPTX
User authentication
CAS
 
PPT
Symmetric and Asymmetric Encryption.ppt
HassanAli980906
 
PPTX
Digital certificates
Buddhika Karunanayaka
 
PDF
Public key Infrastructure (PKI)
Venkatesh Jambulingam
 
PPTX
Fundamentals of Network security
APNIC
 
PPTX
Steganography
Mayank Saxena
 
PPTX
Password Cracking
Sagar Verma
 
PPTX
Tools and methods used in cybercrime
patelripal99
 
PPT
Symmetric & Asymmetric Cryptography
chauhankapil
 
PPTX
Secret key cryptography
Prabhat Goel
 
PPTX
Cryptography
subodh pawar
 
PDF
Email Forensics
Gol D Roger
 
PPT
Secure Socket Layer
Naveen Kumar
 
PPTX
Authentication
primeteacher32
 
PPT
Dmz
أحلام انصارى
 
PDF
Introduction to Cryptography
Seema Goel
 
PDF
Authentication techniques
IGZ Software house
 
PPTX
IP Spoofing
Akmal Hussain
 
Keyloggers and Spywares
Ankit Mistry
 
Network security (vulnerabilities, threats, and attacks)
Fabiha Shahzad
 
User authentication
CAS
 
Symmetric and Asymmetric Encryption.ppt
HassanAli980906
 
Digital certificates
Buddhika Karunanayaka
 
Public key Infrastructure (PKI)
Venkatesh Jambulingam
 
Fundamentals of Network security
APNIC
 
Steganography
Mayank Saxena
 
Password Cracking
Sagar Verma
 
Tools and methods used in cybercrime
patelripal99
 
Symmetric & Asymmetric Cryptography
chauhankapil
 
Secret key cryptography
Prabhat Goel
 
Cryptography
subodh pawar
 
Email Forensics
Gol D Roger
 
Secure Socket Layer
Naveen Kumar
 
Authentication
primeteacher32
 
Dmz
أحلام انصارى
 
Introduction to Cryptography
Seema Goel
 
Authentication techniques
IGZ Software house
 
IP Spoofing
Akmal Hussain
 
Ad

Similar to Public key infrastructure (20)

PPTX
PACE-IT, Security+ 6.3: Introduction to Public Key Infrastructure (part 1)
Pace IT at Edmonds Community College
 
PDF
PUBLIC KEY INFRASTRUCTURE Network and network devices
antrikshjainwork
 
PPT
NS Unit 3 AAR.ppt
Vishalkumar605125
 
PPT
Implementing Public-Key-Infrastructures
Oliver Pfaff
 
PPTX
Public Digital Identity as a Service
PT Datacomm Diangraha
 
PPT
PKI_Applications digital certificate.ppt
ubaidullah75790
 
PPTX
Digital certificates and information security
Devam Shah
 
PPT
Public Key Infrastructure and Application_Applications.ppt
lanhuongvernon
 
PDF
Everything you need to Know about PKI .pdf
Anvesh Vision Private Limited
 
PDF
I would appreciate help with these 4 questions. Thank You.1) Expla.pdf
JUSTSTYLISH3B2MOHALI
 
PDF
Data security for any organization by using public key infrastructure compone...
eSAT Publishing House
 
PDF
Data security for any organization by using public key infrastructure compone...
eSAT Journals
 
PPT
PKI and Applications
Svetlin Nakov
 
PDF
Iaetsd secure emails an integrity assured email
Iaetsd Iaetsd
 
PPTX
Introduction to Public Key Infrastructure (PKI)
Khaled Embarek
 
PDF
Digital certificate management v1 (Draft)
Avirot Mitamura
 
PDF
18CS2005 Cryptography and Network Security
Kathirvel Ayyaswamy
 
PDF
Authentication and Authorization Models
CSCJournals
 
PPTX
Unit 4 (Part II) - Authentication Framework for PKC.pptx
RAMESHMRA21130030110
 
PPTX
Pki for dummies
Alex de Jong
 
PACE-IT, Security+ 6.3: Introduction to Public Key Infrastructure (part 1)
Pace IT at Edmonds Community College
 
PUBLIC KEY INFRASTRUCTURE Network and network devices
antrikshjainwork
 
NS Unit 3 AAR.ppt
Vishalkumar605125
 
Implementing Public-Key-Infrastructures
Oliver Pfaff
 
Public Digital Identity as a Service
PT Datacomm Diangraha
 
PKI_Applications digital certificate.ppt
ubaidullah75790
 
Digital certificates and information security
Devam Shah
 
Public Key Infrastructure and Application_Applications.ppt
lanhuongvernon
 
Everything you need to Know about PKI .pdf
Anvesh Vision Private Limited
 
I would appreciate help with these 4 questions. Thank You.1) Expla.pdf
JUSTSTYLISH3B2MOHALI
 
Data security for any organization by using public key infrastructure compone...
eSAT Publishing House
 
Data security for any organization by using public key infrastructure compone...
eSAT Journals
 
PKI and Applications
Svetlin Nakov
 
Iaetsd secure emails an integrity assured email
Iaetsd Iaetsd
 
Introduction to Public Key Infrastructure (PKI)
Khaled Embarek
 
Digital certificate management v1 (Draft)
Avirot Mitamura
 
18CS2005 Cryptography and Network Security
Kathirvel Ayyaswamy
 
Authentication and Authorization Models
CSCJournals
 
Unit 4 (Part II) - Authentication Framework for PKC.pptx
RAMESHMRA21130030110
 
Pki for dummies
Alex de Jong
 
Ad

Recently uploaded (20)

PDF
Sims 4 Historia para lo sims 4 para jugar
lolpopy34
 
PDF
Paper PDF World Game (s) Great Redesign.pdf
Steven McGee
 
PPTX
artificial intelligence overview of it and more
yafotin445
 
PDF
The Internet -By the Numbers, Sri Lanka Edition
APNIC
 
PDF
Tenda Login Guide: Access Your Router in 5 Easy Steps
tendawifi16
 
PPTX
Introuction about WHO-FIC in ICD-10.pptx
naveenithkrishnan
 
PPTX
Introduction about ICD -10 and ICD11 on 5.8.25.pptx
naveenithkrishnan
 
PPTX
Internet___Basics___Styled_ presentation
poonam62133
 
PDF
SASE Traffic Flow - ZTNA Connector-1.pdf
mackwell7777
 
DOCX
Unit-3 cyber security network security of internet system
shivangisharma636228
 
PPTX
international classification of diseases ICD-10 review PPT.pptx
naveenithkrishnan
 
PPTX
introduction about ICD -10 & ICD-11 ppt.pptx
naveenithkrishnan
 
PDF
Decoding a Decade: 10 Years of Applied CTI Discipline
Andreas Sfakianakis
 
PPTX
Module 1 - Cyber Law and Ethics 101.pptx
anantyakhrisna1
 
PPT
Design_with_Watersergyerge45hrbgre4top (1).ppt
DiogoRibeiro730590
 
PDF
Triggering QUIC, presented by Geoff Huston at IETF 123
APNIC
 
PPTX
PptxGenJS_Demo_Chart_20250317130215833.pptx
itruongva
 
PPTX
June-4-Sermon-Powerpoint.pptx USE THIS FOR YOUR MOTIVATION
KuyaRogie
 
PPTX
INTERNET------BASICS-------UPDATED PPT PRESENTATION
poonam62133
 
PPTX
innovation process that make everything different.pptx
SoumyadipPaul18
 
Sims 4 Historia para lo sims 4 para jugar
lolpopy34
 
Paper PDF World Game (s) Great Redesign.pdf
Steven McGee
 
artificial intelligence overview of it and more
yafotin445
 
The Internet -By the Numbers, Sri Lanka Edition
APNIC
 
Tenda Login Guide: Access Your Router in 5 Easy Steps
tendawifi16
 
Introuction about WHO-FIC in ICD-10.pptx
naveenithkrishnan
 
Introduction about ICD -10 and ICD11 on 5.8.25.pptx
naveenithkrishnan
 
Internet___Basics___Styled_ presentation
poonam62133
 
SASE Traffic Flow - ZTNA Connector-1.pdf
mackwell7777
 
Unit-3 cyber security network security of internet system
shivangisharma636228
 
international classification of diseases ICD-10 review PPT.pptx
naveenithkrishnan
 
introduction about ICD -10 & ICD-11 ppt.pptx
naveenithkrishnan
 
Decoding a Decade: 10 Years of Applied CTI Discipline
Andreas Sfakianakis
 
Module 1 - Cyber Law and Ethics 101.pptx
anantyakhrisna1
 
Design_with_Watersergyerge45hrbgre4top (1).ppt
DiogoRibeiro730590
 
Triggering QUIC, presented by Geoff Huston at IETF 123
APNIC
 
PptxGenJS_Demo_Chart_20250317130215833.pptx
itruongva
 
June-4-Sermon-Powerpoint.pptx USE THIS FOR YOUR MOTIVATION
KuyaRogie
 
INTERNET------BASICS-------UPDATED PPT PRESENTATION
poonam62133
 
innovation process that make everything different.pptx
SoumyadipPaul18
 

Public key infrastructure

  • 1. TOPIC- PUBLIC KEY INFRASTRUCTURE ADITYA NAMA
  • 2. What is Public Key Infrastructure? A public key infrastructure (PKI) allows users of the Internet and other public networks to engage in secure communication, data exchange and money exchange. This is done through public and private cryptographic key pairs provided by a certificate authority. There are different types of systems in a PKI: • Private and Public Key Systems: Private systems are symmetric cryptography and a public systems are asymmetric cryptography. Currently, public key systems are the most common. • Symmetric Encryption Systems: The same key is used for both the processes of encryption and decryption. • Asymmetric Encryption Systems: A different key is used for each process. One key is the public key and the other key is the private key. If something is encrypted with the public key, then decryption can only be done with the private key. Alternatively, if something is encrypted with the private key, then decryption must be done only with the public key.
  • 3. It is a Framework that allows different it systems to have: Throughout authentication with
  • 4. JOHN SUZZANE Secure Message REQUEST SENDS HER KEY TO JOHN TO ENCRYPT THE MESSAGE Encrypted Message Can be distributed to anyone Uses to Decrypt the message and read it. Let’s take an example: -
  • 5. How do we really know that John really got Suzzane Public key? Someone could have pretended to be Suzzane and send John her/his Public key. This is where Digital Certificates come in. SUZZANE
  • 6. What is Digital Certificate? • They are the data packages that Identifies the entity. What is Digital Certificates? • The Digital Certificates itself is protected by asymmetric cryptography A trusted party known as Certificate Authority(CA) issues these Digital Certificates to the person once a certain confidence in the person's identity has been established by the CA.
  • 7. PKI is also often backed up by legislation that is country specific. PKI Might be present in CA is both an organization as well as set of IT system that is: • Responsible for Issuing • Revoking • It is often a third party organization that is trusted by all parties participating in PKI. REGISTRATION AUTHORITY(RA): The Registration Authority (RA) is to evaluate the credentials and relevant evidence that a person requesting a certificate is as claimed, certify for that association of an electronic identification, public key and approves the request for issuance of a certificate by a CA.
  • 8. Organizations can also have their In-house CA system. Secure matrix PKI in a BOX Appliance allows organizations to exactly do that with ease and at a lower cost. Now take that example again of John and Suzzane but this time with PKI:
  • 9. JOHN SUZZANE Secure Message The Digital Certificate contains suzzane’s particulars, Public Key, the CAS particulars and cryptographic data all the information needed to identify the entity with a high level of confidence. The process will remain same but this time John make sure that the Public Key came from Suzzane by validating DC.
  • 10. • It allows the choice of trust provider. • Users maintain their own certificates, and certificate authentication involves exchange of data between client and server only. This means that no third party authentication server needs to be online. There is thus no limit to the number of users who can be supported using PKI. • PKI allows delegated trust. That is, a user who has obtained a certificate from a recognized and trusted certificate authority can authenticate himself to a server the very first time he connects to that server, without having previously been registered with the system. Advantages of the PKI: Disadvantages of the PKI • Computer has to work very hard to both encrypt and decrypt data using the system. In applications where we need to work with large quantities of encrypted data on a regular basis, the computational overhead means that public key systems can be very slow.
  • 11. • The certification authority may be get compromised, the criminal could issue false certificates and fool people into sending data to the wrong place. • However, once you receive that credit card data, if you leave a computer with access to your server out in the open, someone could sit down at the keyboard, download all of the securely transferred data and steal it. Public key encryption won't protect against that and, as such, it's only a part of an overall security system. END! SOURCE IS SECURED for links send me your Digital Certificate.